Increasing attention to information protection and, more specifically, recent state and federal regulations, require that all organizations have written policies and procedures to protect personal information.
Proper information destruction is among those aspects of data protection that are receiving the most attention from policymakers. Improperly discarded personal information is one of the leading causes of privacy violations and Identity Theft. As a result, laws now necessitate that such information is properly destroyed when discarded. These same laws also mandate that policies and procedures for destroying discarded information be established in writing. Documenting the policies and procedures governing an organization’s proper information disposal is important not only to establish that employees are given sufficient direction but also to assure regulators, as well as customers, that the organization recognizes, practices and enforces their responsibilities.
Without such written policies and procedures, an organization runs the likely risk of being found negligent in demonstrating the ability to properly train employees. Lack of written policies demonstrates that the organization is not adequately attempting to comply with its overall information protection duties.
AccuShred is uniquely qualified to assist your organization in the development of a written information destruction policy. NAID has developed a thorough toolkit that will take an organization step-by-step through the various phases of policy development. Individual NAID training is required in order to qualify to take a company through the steps necessary to implement this policy toolkit. AccuShred has individuals that have completed the toolkit training and are experts in helping your organization develop a defendable written information destruction policy.