All businesses that handle any kind of customer or employee personal data are required by recent laws and legislation to ensure that this data is stored securely and destroyed appropriately. Please see the laws below that pertain to different businesses.
This act requires healthcare organizations to maintain safeguards to prevent intentional or unintentional use of protected health information (PHI). This includes patient medical records, patient logs, insurance, billing and other personally identifiable health information.
This legislation anticipates a massive expansion in the exchange of electronic protected health information. Mandatory penalties will be imposed for ‘willful neglect’ of HIPPA.
(Banks, Credit Unions, Security Brokers, Real Estate Appraisers, Insurance Co, Auto Leasing Co, Travel Agencies, Retailer who issues own credit card):GRAMM-LEACH BLILEY ACT (FULL MANDATORY COMPLIANCE EFFECTIVE JULY 1, 2001) Must ensure the security and confidentiality of customer personal information, including names, addresses, phone numbers, bank and credit card account numbers, income and credit histories, and social security numbers. Take steps to ensure secure transmissions, and dispose of paper and old hard drives by destroying appropriately. Shamrock Shredding will provide ‘Document of Destruction” for company’s records.