An integral part to any home office or company should include data security. One huge component of data security is data destruction. This could refer to the destruction of electronic data or shredding confidential documents. Make sure that whatever shredding company you choose, make sure that the shredding service is willing to provide you with a certificate of destruction. A Certificate of Destruction is a legal document that describes what and when and by whom your electronic waste or paper documents were destroyed. A certificate of destruction is integral for any external audit compliance. Typically, in the case of electronic data, serial numbers are recorded and documented for compliance audits. Embassy does not provide a wiping service. We pulverize or shred all documents and e-waste and then recycle the pulp.
A good measure to take would be to follow the CPA guidelines for destruction even if you are in another industry. SOC 2 (system and organization controls) is a voluntary compliance standard for service organizations, developed by the American Institute of CPAs (AICPA), which specifies how organizations should manage customer data. The standard is based on the following Trust Services Criteria: security, availability, processing integrity, confidentiality, privacy.
Certified destruction really refers to the specific method of destruction for each medium. Embassy utilizes the cross-cut and pierce and tear methods for paper or box shredding destruction. All our electronic waste is pulverized or shredded and then 100% recycled. This includes the following:
CD destruction
Flash Drive Destruction
Computer disposal
Hard Drive Shredding
Paper Shredding Service
HIPAA compliant destruction
Embassy can shred on-site or you can bring them to any of our facilities for drop off shredding. We will always provide a certificate of destruction when prompted. Trust a NAID compliant information management firm to shred your data for you. We confirm that all PHI is protected when using Embassy.
Comentarios