Data Facts:



HIPAA (Health Information Portability and Accountability Act)



This Act required the Department of Health and Human Services to establish national standards for electronic health care transactions and national identifiers for providers, health plans, and employers.

It also addresses the security and privacy of Patient Health Information (PHI).  Specifically, it requires healthcare providers to destroy PHI before throwing it away.




California Civil Code 1798.80-1798.84



This California state law states that any business that deals with “personal information” “shall take all reasonable steps to destroy” a customer's records that are no longer of value by “shredding, erasing or otherwise modifying” the information to render it unreadable. 

California is one of two states in the Union ( Georgia is the other) with a state shredding law.





Fair and Accurate Credit Transactions Act (FACTA)



FACTA is a subset of the Fair Credit Reporting Act.  On June 1, 2005, FACTA's section 216 will require any business or person who possesses consumer information to destroy the information before discarding it.



 





* HIPAA (Health Insurance Portability and Accountability Act)

* Sarbanes-Oxley Act

* Gramm-Leach-Bliley Act (GLBA)

* Bank Secrecy Act (BSA)

* Patriot Act of 2002

* Identity Theft and Assumption Deterrence Act

* US Safe Harbor Provisions

* FDA Security Regulations (21 C.F.R. part 11)

* PCI Data Security Standard

* Various state laws



   


Certificates

What is it?

A certificate validating the destruction of your items, Complete Data Control will provide a signed and dated Certificate of Data Destruction.   
            Documents / Media tapes / X Rays / Other[s]

Destruction can be overseen by customer, monitored remotely via dedicated IP address or overseen and verified by personnel.


Why do you want it?

There are many reasons why you would want this certificate including:

  • Internal/External audits

  • Safety of proprietary information

  • Safety of customer and employee information

  • Documentation of chain of custody

  • Compliance with industry standards

Our complete data destruction service helps our customers be compliant with the following regulations:

  • HIPAA (Health Insurance Portability and Accountability Act)

  • Sarbanes-Oxley Act

  • Gramm-Leach-Bliley Act (GLBA)

  • Bank Secrecy Act (BSA)

  • Patriot Act of 2002

  • Identity Theft and Assumption Deterrence Act

  • US Safe Harbor Provisions

  • FDA Security Regulations (21 C.F.R. part 11)

  • PCI Data Security Standard