Does your company have a policy for failed drives or end of life data bearing assets?
If not, why not??
If the answer is yes, do you really know how your assets are processed by your channel partner?
In 2010 Brighton and Sussex University hospital NHS Trust was fined £325,000 by the ICO after sensitive patient data of thousands of people was discovered on hard drives sold on eBay. The Trust’s IT service provider, Sussex Health Informatics Service (HIS), was tasked to destroy information on around 1,000 hard drives that were held in a room accessed by key code at Brighton General Hospital. The job was handed over to an unnamed individual sub-contractor who did not wipe the drives and over 200 of them found their way on the internet for sale. The ICO found that data held on these drives contained details of patient’s medical conditions and treatment, disability living allowance and children’s reports. They also contained staff details including National Insurance numbers, home addresses, ward and hospital IDs, and information referring to criminal convictions and suspected offences.
Over the past 15 years at Euro Recycling, we have developed our secure on and off site destruction and recycling service. Our service has been designed specifically around HMG Information Assurance Standard No.5 (IAS No.5) to deliver full compliance.
Accredited to deal with all levels of protectively marked data under the new Government Security Classifications, and security cleared operatives to a minimum of SC, Euro Recycling makes the perfect channel partner when disposing of data bearing assets.
Can you afford to be the next data breach case study? Don’t get caught out and suffer huge fines!!
Contact Euro Recycling today!!