Privacy and Disposal: The Importance of Secure Shred
Effective June 1, 2005, the Disposal Rule states that “any person who maintains or otherwise possesses consumer information for a business purpose” is required to properly dispose of the information, whether in electronic or paper form, by “taking reasonable measures to protect against unauthorized access to or use of the information in connection with its disposal.”
It is important that proper security and authorization access levels are in place across the organization. When it comes to the destruction and disposal of records, a company should have:
• An accurate classification of records that links to retention policies;
• Documented policies to identify and approved records for destruction;
• A method for accurately “holding” any records impacted by legal intervention;
• Secure processes for destroying active and archived inactive records;
• A documented chain of custody for all of the above.
This Executive Report provides seven factors that every executive should know about information destruction and three key strategies to improved information destruction. It also provides sample Records Management Procedures that may be customized for any size company or organization.
Please Login to retrieve publication.