Law in IT

How to properly get rid of the law-breaking UGC?

I run a small site where users can upload photos. Sometimes they upload illegal materials there. How to properly dispose of these materials?
I see several ways:
1. Completely block access to downloaded files by means of the FS, but leave the files themselves physically on the disk. With this approach, the user will not be able to read or write them again, but law enforcement agencies will be able to request the contents of such a file if necessary. Will they go to jail for the fact that these files are physically stored on the server's hard drive?
2. Remove illegal files from the disk. Doesn't this fall under the destruction of evidence in the event of an investigation by law enforcement agencies?
3. Combined approach - encrypt files with some asymmetric key, if necessary, be able to decrypt if they are needed in a criminal case. At the same time, they will be stored on the disk in encrypted form, but will this save you from criminal liability for storage?
And again, when a user uploads an illegal file, is the administrator somehow obliged to notify law enforcement agencies, and in case of no notification, but only taking measures to restrict access, will this not fall under the article on non-information?
What is the right thing to do in such cases if something illegal has been uploaded to the server?