This document discusses how to address the "right to be forgotten" requirement of the General Data Protection Regulation (GDPR) in data backups and archives. It notes that while deleting user data from primary storage is relatively easy, removing it from backups is difficult due to technical challenges. The document proposes several solutions, including deleting restored data, restoring to a sandbox, pushing all data to an archive within 7 days, and using intelligent file-level backups with rich metadata to enable easy deletion from backups. It introduces the Aparavi active archive platform as an approach that addresses these issues through its file-level storage, classification, and deletion capabilities.