Regional Computer Recycling & Recovery suggests proper destruction or sanitization of certain data- enabled devices to minimize security breaches.
VICTOR, N.Y. (April 16, 2014) — With the amount of proprietary data stored on hard drives, USB flash drives, and other data-bearing devices, businesses should take careful measures to destroy any private information before recycling old electronic equipment. The simple fact is: many don’t. According to the Federal Trade Commission, nine million people per year fall victim to identity theft.
With the recent announcement by Microsoft that they will no longer support Window XP, many organizations are currently considering replacing their older equipment, Regional Computer Recycling & Recovery, a licensed New York State Data Destruction Contractor, recommends organizations take necessary precautions to prevent a security breach. Data-bearing devices are laden with social security numbers, pictures, birthdates, and personal data that can also serve as tools-of-the-trade for the identity theft industry.
When electronic equipment is no longer in use, RCR&R recommends the equipment be recycled by a certified electronics recycler to guarantee proper handling and disposal. In addition, hard drives should either be sanitized or shredded, accompanied by a certificate of destruction. For sanitization (the process of erasing drives of all information), a Department of Defense Level or Secure Erase wiping process is recommended.
“Proper, certified shredding or sanitizing of hard drives and other data-bearing devices is important, but the key is to follow a strict chain-of-custody,” says Michael Whyte, RCR&R president. Whyte refers to the National Association of Information Destruction, the only recognized certifying organization for the information destruction industry. NAID routinely conducts internal and unscheduled audits of its certified members. NAID’s policies for providing proper hard drive sanitization and destruction require their certified members to maintain separate secure destruction areas with video surveillance, and in-depth background checks for employees. These NAID processes coincide with federal regulations such as HIPAA, Sarbanes-Oxley and FACTA which mandate proper data security procedures for data-enabled devices.
In addition to employee records, credit card numbers and other vital information are also stored on hard drives by businesses, government agencies, schools and health organizations. Liability issues may result in the improper handling of information that leads to identity theft. “At RCR&R we play an integral part in our client’s data security specifications,” adds Whyte. “Our NAID chain-of-custody reporting is what they demand.”
RCR&R offers businesses on-site tours at their headquarters in Victor, N.Y. highlighting their NAID Certified data security processes, electronic recycling best practices, and premier asset management methods. Contact RCR&R at (585) 924-3840, or RCR&R’s website is www.eWASTE.com. To learn more about NAID, visit www.naidonline.com. Since 1995, Regional Computer Recycling & Recovery has provided over 8,000 organizations statewide with cost effective secure environmental solutions for idle, obsolete, and non-working high technology products; while emphasizing environmentally sound processing methods to maximize value and recovery while minimizing and/or eliminating disposal of electronics in landfills.