Secure Data Destruction for Health Service Providers
FAST – EFFICIENT – RELIABLE – PROFESSIONAL – INEXPENSIVE – REGULATORY COMPLIANT
Back Thru The Future’s Safe Harbor Express® (SHE) scheduled secure data destruction service is specifically designed to provide a turnkey solution for the manual handling of your to be disposed of data assets, relieving your IT department of this cumbersome task.
The HIPAA/HITECH required device and media control system specifies that you must know at all times where your PHI resides and can prove that it is secure for its entire lifecycle, from the point a data asset enters your IT system to the moment that it becomes obsolete and recorded data is destroyed. Once a data asset is determined to be obsolete and removed from your online system, your control system becomes a manual process. Manual systems are notoriously difficult to quality control, requiring significant management time and utilization of scarce technical resources. Employee turnover and time constraints can quickly create havoc with your procedures.
Since the implementation of the HIPAA/HITECH Data Breach Notification requirements, over 60% of all reported breaches have been caused by the loss of physical data storage devices/media.
Despite media attention to online security breaches loss of control of physical data assets is a health service providers biggest risk. These reported breaches, in most cases, never compromised protected health information (PHI). The breach notification was triggered by the loss of control of a non-secure data asset. Because of this, OCR compliance audits focus on health service providers data asset control policies.
HITECH has provided health services organizations tools to manage the “Data Breach Notification” liability.
These tools are called “Data Breach Notification Exclusions” for secured data. Secure data is defined as encrypted data or data that has been sanitized utilizing NIST Guidelines for Media Sanitization protocols. Applying NIST protocols to your obsolete and defective data assets, prior to disposal and while still within your security perimeter, represents a HIPAA data privacy best practice.
Back Thru The Future’s Safe Harbor Express® provides the inventory control system, secure containers, onsite NIST approved data destruction and environmentally compliant hard drive disposal and recycling services.
DATA PRIVACY COMPLIANCE with ONSITE HARD DRIVE DESTRUCTION
Back Thru The Future® provides NIST Special Publication 800-88 “Guidelines for Media Sanitization” approved onsite hard drive shredding and degaussing services for healthcare organizations just like yours. State data privacy laws and Federal data privacy regulations require personally sensitive data be destroyed prior to the disposal of the media it is recorded on. The destruction must adhere to NIST guidelines. Hard drives and solid state drives are electronic devices and by law must be recycled by an authorized electronics recycler. We are one of a very limited number of companies that can provide environmentally compliant onsite hard drive shredding.
We Are A NAID AAA Certified Secure Data Destruction Facility
Data protection regulations require organizations to monitor the qualifications and compliance of service providers that process sensitive information. NAID AAA secure data destruction certification is the data destruction industry’s standard for the destruction of sensitive information. It is a set of annually audited handling procedures that assures clients that the certified company is in fact qualified to perform the data destruction task according to the rigorous requirements of the certification process. Both Federal and State data privacy regulations require that if you out source the destruction of sensitive data that you perform a “vendor due diligence”. Chosing a NAID AAA Certified business will go a long way in establishing your organization’s compliance. We are the only licensed electronic recycling facility in the New York metropolitan area that is NAID AAA certified.
Business Experience and Reputation
Back Thru The Future® has focused its secure data destruction services on the healthcare services industry. Our healthcare customer reference list is extensive, including the national Blue Cross Blue Shield Association.
Distrust of Vendors Raises Security, Compliance Questions 4/7/16
WHY OUTSOURCE YOUR DATA DESTRUCTION?
Increasingly, health service organizations are absorbing the burdens of ever-changing data privacy regulatory requirements that force you into workflows that are not efficient, and that demand management time and attention. Our Safe Harbor Express® (or SHE) turn-key secure data destruction service represents an attractive solution to the challenges associated to destroying obsolete data assets. We take the complex HIPAA record keeping requirements and the time-consuming tasks of manually controlling and destroying obsolete data assets off your plate. It frees both management and employee time so that you can focus on
core IT functions.
92% of our new client quality control surveys have been returned marked “exceeded expectations”.
Why not get a project price quote and find out how inexpensive great service can be?