Securely disposing of end of life IT Assets onsite in the root location is the safest way to avoid a HIPAA data breach. As many healthcare firms consider cellular onsite shredding, it’s useful to be familiar with the HIPAA Security Rules to guarantee compliance.
HIPAA laws see the bottom line in complete terms on any data breach: it’s your responsiblity. Therefore, if you’re a healthcare firm considering cellular onsite monitoring, what are the significant elements of a mobile data destruction service and what do you need to consider?
- Qualified -- though the service is onsite, you’re still entrusting your digital data equipment to a third party. Employees should be ensured and trained about the contracted data destruction service. The shredding company should possess the capacity to shred a solid state drive (SSD) to 2mm shred size or offer standard server and desktop hard disk shredding.
- Certification of Destruction -- A certificate of jealousy, including serial numbers for all pieces of equipment, needs to be offered to confirm data was destroyed.
- Video verification -- Additional security can be supplied by continuous videotape verification documenting all shredding activities inside the mobile truck.
- Asset Transfer Form -- Offers a list of assets which were destroyed on site from the third party service provider.
Is your healthcare-related company at risk due to data destruction unknowns? To discover how onsite mobile shredding can help avoid a HIPAA data breach, please contact your IT gear VAR to learn more.