WHY DOES INFORMATION NEED TO BE SHREDDED?
Because It’s the law! Businesses have a legal and ethical responsibility to safeguard personal, private and sensitive information. All businesses have occasion to discard confidential material; however traditional trash bins and dumpsters pose a huge security risk. The Federal Trade Commission estimates that as many as 10 million Americans a year are affected by Identity Theft, resulting in the loss of billions of dollars.
Document destruction by Coastal Secure Shredding ensures your privacy and that of your employees, customers, patients, students. Totally destroying all confidential documents greatly minimizes the risk of not only Identity Theft, but of corporate espioniage and security breaches. Shredding takes place in our state-of-the-art trucks, at your location, and is completely secure.
Federal and state regulations have been established to require businesses to completely destroy, rather than simply discard information. These laws are an important effort to protect the rights and the privacy of consumers. Penalties are high for companies who do not comply, especially pertaining to the areas of health and finance. Coastal Secure Shredding ensures proper and complete document destruction.
WHAT ARE THE LAWS AND WHAT DO THEY MEAN?
State of California
California Senate Bill 1386, the California Security Breach Information Act: A California state law requires that an agency, person or business that conducts business in California and maintains or licenses computerized “personal information” to disclose any breach of security to those individuals.
California Civil Code 1798.80-84: Protects personal information about California residents, mandates how businesses shall destroy private information on California residents.
FACTA – Fair and Accurate Credit Transactions Act: signed into law in December, 2003, the Act includes a number of provisions intended to combat crimes related to identity theft and consumer fraud. This Act requires the destruction of papers containing consumer information, and requires compliance with virtually every business or organization.
HIPPA – Health Insurance Portability and Accountability Act: passed in 1996 and revised by Congress in 2000, HIPPA is a federal law that governs the handling of confidential medical and personal information and records. Fines and penalties may result from the disclosure of personal information; compliance is required by all companies that handle medical and personal information, including hospitals, hospice and home care, Medicare, etc.
SARBANES-OXLEY ACT OF 2002: major provisions include a requirement that public companies evaluate and disclose the effectiveness of their internal controls. It is generally this requirement which addresses the need for companies to have detailed information control systems – including secure disposal of business records.
GRAMM-LEACH-BLILEY ACT (FINANCIAL): mandates that all financial institutions establish procedures for protecting personal information, including the protection of discarded information, and respecting the “privacy of its customers”.
FERPA – Family Educational Rights and Privacy Act: protects the privacy of student education records; improper disposal of student records may constitute an unauthorized disclosure under FERPA.
WHAT KIND OF DOCUMENTS NEED TO BE SHREDDED?
Documents which must be shredded include:
WHAT ARE SHREDDING SOLUTIONS?
1) Do it yourself. One common solution is to buy one or more shredders. But small office shredders:
2) Hiring a service to shred for you. Outsourcing shredding has become the preferred solution for organizations large and small. Personal, confidential information must be securely destroyed no matter the size of office.