Your Organization is at RISK with Every Uninformed IT Asset Disposal Decision
There are over 500 Federal and State regulations governing IT asset disposal
Back Thru The Future understands these risks and has the proven tools and the experience to guide our clients through this complicated regulatory landscape
“WE SPEND AN OCEAN OF MONEY ON CYBER-SECURITY…
IT’S THE ONLY EXPENSE WHERE I ASK IF IT’S ENOUGH.”
John G. Stumpf, CEO – Wells Fargo
FAST – EFFICIENT – RELIABLE – PROFESSIONAL – INEXPENSIVE – REGULATORY COMPLIANT
NO OTHER INDUSTRY HAS MORE REGULATORS CONCERNED WITH DATA PRIVACY PROTECTION THAN THE FINANCIAL INDUSTRY
Destroying obsolete hard drives and other data media by shredding onsite represents the most efficient and cost effective method of compliance to regulatory data privacy data destruction requirements.
If you choose to utilize a third party vendor for hard drive shredding, the Office of Controller of the Currency has issued OCC Bulletin 2013-29 “Risk Management Guidance for Third Party Relationships”, requiring banks to conduct due diligence on all potential third party vendors prior to selection and entering into contracts/relationships (read more here).
25 YEARS OF EXPERIENCE AND OVER 1000 CUSTOMERS
Back Thru The Future® specializes in providing secure onsite data destruction services to the financial industry in the Northeast business corridor. Our clients include some of the largest international banking enterprises as well as the Federal Reserve. In the State of NJ we service nearly 70% of the entire community banking industry. This specific experience, along with our unique credentials as a Federal EPA permitted universal waste destination facility electronic recycler and NAID AAA certified secure data destruction provider, meet with the OCC requirements for a qualified third party service provider.
ANNUALLY SCHEDULED SECURE DATA DESTRUCTION SERVICES
Destroying non-public personal information (NPPI) recorded on your old hard drives, cell phones, PDAs and other data media is both technically complex and time consuming. Back Thru The Future’s Safe Harbor Express® (or SHE) is a turnkey annual contract for scheduled onsite GLBA compliant NPPI destruction. It replaces ad-hoc, inconsistent data destruction processes that put your business at risk. This service is a highly affordable, easily implemented and simple to manage solution to the GLBA NPPI destruction requirements (more details here).
BANKING PCI DSS COMPLIANCE CONCERNS
All Banks must comply with PCI DSS compliance requirements. Protection of your customer’s payment card information is fundamental to a banks’ reputation. PCI DSS requires that not only do you protect cardholder information you must also maintain the integrity of your card data collection system. You must regularly monitor all collection devices to make sure they function properly and have not been tampered with. There are 12 security issues that must be maintained for PCI DSS Compliance
3rd Party Service Providers Must Be Certified PCI DSS Compliant Also
You are required to confirm that any 3rd party service provider that comes in contact with card holder data which includes data storage media as well as card data collection devices is certified by the PCI DSS council for that activity.
PCI defines a service provider as: A Business entity that is not a payment brand, directly involved in processing,storage, or transmission of cardholder data. This also includes companies that provide services that control or impact the security of card holder data.
Back Thru The Future provides secure data destruction services for the shredding of data media that holds cardholder data as well a product destruction services for card reading devices. Back Thru The Future has met the PCI DSS third party compliance certification requirements of completing the 96 page PCI Third Party Self Assessment Questionair “SAQ”
WHY OUTSOURCE YOUR DATA DESTRUCTION?
Increasingly, financial services organizations are absorbing the burdens of ever-changing data privacy regulatory requirements that force you into workflows that are not efficient, and that demand management time and attention.
Our Safe Harbor Express (or SHE) turn-key secure data destruction service represents an attractive solution to the challenges associated to destroying obsolete data assets. We take the complex GLBA record keeping requirements and the time-consuming tasks of manually controlling and destroying obsolete data assets off your plate. It frees both management and employee time so that you can focus on core IT functions.
100% of our client quality control surveys rate both our pre-project and
post-project communications as “Excellent”
92% of our new client quality control surveys have been returned marked “exceeded expectations”.
Why not get a project price quote and find out how inexpensive great service can be?