What is secure destruction?
In order for an organisation to comply with their obligations under the Data Protection Act they must establish technical and organisational measures to ensure that personal data is not revealed to unauthorised persons. When disposing of documents containing such information they must ensure that those documents are destroyed sufficiently and that only authorised persons are involved in the process.
Records can be physical, paper documents or digital media/HDD and contain:
- Medical files
- Bank details
- Personal emails
- Client account details
- Employee details
- Personal details
In addition to destruction of sensitive information on paper or hard drives many companies require secure disposal of corporate items such as:
- Plans & drawings
- Credit cards
- ID cards
- SIM cards
- medical x-rays
- overhead projection slides/transparencies
- uniforms (police, military etc)
- retail goods with faulty labelling
- electronic equipment
- headed paper and other corporate stationery
- Counterfeit goods
Methods of Disposal
Sensitive documents and also data storage media can be shredded into tiny pieces, either on site or at specialist facilities. The resulting waste can be recycled, sent to landfill or even composted, in the case of paper.
Storage media includes hard drives, tapes, discs and other storage drives.
This is an extremely effective method for destroying all traces of data but does nothing to reduce the amount of waste that must be disposed of.
High temperature incineration is viewed as the most secure and reliable disposal option for hazardous waste and is also used to securely destroy confidential waste.
Waste is reduced to inert residues with a volume decrease of up to 80%.
Digital storage media such as hard disk drives and tapes use magnetics to store their data. Exposing such media to a more intense, fluctuating magnetic field has the effect of reverting them to a neutral state, thus erasing the data that they contain. This is called degaussing.
A degausser is a machine that generates such a magnetic field and can also include a shredder, to physically destroy the item once it has been erased.
British Standards EN 15713 provides a framework of key conditions to be adhered to by companies who destroy confidential information on behalf of their customers.
The standard covers premises in which the description is to be carried out, contracts between the client and organisation and whether sub-contractors are being used.
All personnel involved in the collection, transportation and destruction process must be security vetted according to BS7585 and have signed a deed of confidentiality. They must be uniformed, suitably trained and carry photographic ID.
Vehicles must be secure, either with a box body or demountable container. The driver must have a method of communicating with their base and the vehicle must be fitted with an alarm or immobiliser system. The vehicle must be locked during transit and the alarm/immobiliser activated any time it is unattended.
Waste Transfer Notes must be issued for each consignment.
RJS Waste can provide either regular scheduled collections or one off/temporary collections, for example, office clearances.
Our collections will comply with all the relevant regulations noted above and your confidential waste will be delivered to a leading site for incineration.
On completion you will be given a Data Destruction Certificate.