Thanks - I understand about the ethical licensing. From what you and Symantec support are telling me, this is the proper method of correcting the number of licenses used:
1. Identify users who have not been active in some time
2. Delete these users
In addition, I should deinstall PGP on devices to be disposed of. If the device is unavailable (i.e., already been disposed of) I should delete the device.
Please confirm if this is correct (or not).