The software uses a resource that contains sensitive data, but
					it does not properly remove that data before it stores, transfers, or shares the
					resource with actors in another control sphere. Resources that may contain sensitive data include documents, packets,
						messages, databases, etc. While this data may be useful to an individual
						user or small set of users who share the resource, it may need to be removed
						before the resource can be shared outside of the trusted group. The process
						of removal is sometimes called cleansing or scrubbing. For example, software that is used for editing documents might not remove
						sensitive data such as reviewer comments or the local pathname where the
						document is stored. Or, a proxy might not remove an internal IP address from
						headers before making an outgoing request to an Internet site.