DIN 66399

Laws & Standards

Clarity at last when it comes to disposing of data carriers!

DIN standard 66399

The new DIN standard 66399 retires the previous DIN standard 32757!
The main changes and innovations are

3 protection classes

In order to take into account the principle of economic efficiency or the principle of appropriateness when destroying data carriers, it is necessary to divide the data into protection classes. The degree of protection required is decisive for the selection of the security level with regard to the destruction of the data carrier.

6 material classification

For the first time, the standard defines different material classifications that also take into account the size of the information displayed on the data carrier (paper documents, optical, magnetic or electronic data carriers and hard drives).

7 security levels

Instead of five security levels, the new DIN 66399 now defines seven security levels. A major difference is the new stage P-4 with a particle area of max. 160 mm2, the previous level 4 becomes level P-5, level 5 becomes P-6 and the “level 6”, which was not previously considered in the standard, becomes level P-7.

Find the right service for your company

Classification of the material according to DIN 66399

The determination of the protection requirement and the assignment of the protection class and the security levels serve to classify the data generated.


Protection class 1

Normal protection requirements for internal data. This information is intended and accessible for larger groups . Unauthorized disclosure would have limited adverse effects on the Company. The protection of personal data must be guaranteed. Examples: Correspondence not relevant to know-how, personalized advertising, catalogues, direct mail, notes


Protection class 2

High protection requirement for confidential data that is limited to a small group of people . Unauthorized disclosure would have a significant impact on businesses and could violate contractual obligations or the law. The protection of personal data must meet high requirements . Examples: Know-how-relevant correspondence such as offers, inquiries, memos, notices, personnel data…


Protection class 3

Very high protection requirements for particularly confidential and secret data with limitation to a small group of authorized users who are known by name. Unauthorized disclosure would have serious, life-threatening consequences for companies and would violate professional secrets, contracts and laws. The protection of personal data must be guaranteed without restrictions . Examples: Management documents, R&D documents, financial data, classified information.

The three protection classes can be assigned to the security levels using the following table:

Classification of the material according to DIN 66399

Display of information in original size, eg paper, films, printing plates. Security levels P-1 to P-7

Information display reduced, e.g. microfilms, foil.
Security levels F-1 to F-7

Display of information on magnetic data carriers, eg ID cards, floppy disks. Security levels T-1 to T-7

Displaying information on optical data carriers, eg CDs/DVDs.
Security levels O-1 to O-7

Information representation on hard drives with magnetic data carriers.
Security levels H-1 to H-7

Display of information on electronic data carriers, eg memory sticks, chip cards. Security levels E-1 to E-7

Send us your request now

If you have any further questions, we would be happy to advise you personally and provide you with answers.

Andreas Schulze -PAPERSHRED®

Contact Papershred

Send us your request now

If you have any further questions, we would be happy to advise you personally and provide you with answers.

Andreas Schulze -PAPERSHRED®