In message <C4BFE233-461C-4CC7-8C18-34B88BBD2900@microsoft.com> jimmuh
<jimmuh@discussions.microsoft.com> wrote:

>No, in other words there is a concept called "due diligence" at work here. It
>is impossible make any system perfectly secure. But there's a hell of a
>difference between being able to do a casual inspection and retrieve previous
>versions through a folder's properties dialog on a machine inadvertantly left
>unattended for a few minutes and having to use forensics to get the same
>data. The difference is recognized quite widely in court. And these guys are
>-- well, lawyers.

Understood, to a point -- Recovering files from a "oops I deleted it by
accident" point of view is unreliable. Undeleting files from a "The
rest of a client's life or livelihood depends on these files being gone"
is trivially simple for someone with relatively few skills (and access
to Google to find a tool to do it)

I would hope my lawyer does more then the minimum required to qualify as
due diligence.

That being said, there are a few options...

The easiest would be a second logical drive (physical or partition)
which doesn't use Shadow copies. You could even mount that partition
into the user's Documents directory, or redirect their Documents to an
appropriate location.

Better yet would be solution using encryption, which would only require
you to destroy the keys to effectively remove access to the data.
--
Insert something clever here.