Prevent fraud before it occurs, by utilizing the data security services available with PureITAD.
We’ll help you earn and maintain your clients’ trust by assuring protection of critical financial information through data destruction and sanitization. We also ensure that your data reporting is accurate and compliant with all industry specific regulations.
Comprehensive Data Security for Financial Institutions
PureITAD works with banks, insurance companies, brokerage houses, mortgage companies and other financial institutions by helping them with their computer disposal needs and also helps to protect data security and your clients’ privacy. We are proud to provide our customers with sound environmental solutions and comprehensive data security. From simple financial information to highly confidential tax, mortgage and brokerage records, data security is rapidly becoming a critical issue for the financial industry.
Financial and Banking Industry Solutions
Our solution to your data security needs is a removal of data based on the NIST 800-80 and Department of Defense (DOD) 5220-22-M standard. Once this process is done correctly, information on the drive is irretrievable, allowing these systems to be recycled, resold or disposed of properly, in an environmentally responsible manner. For especial projects, where we have damaged hard drives, or special destruction needs, PureITAD works with our clients to deliver a fully customized On-Site Physical Data Destruction service.
Our customized ITAD solutions, not only meet but exceed the following regulatory compliance requirements:
Personal Information Protection and Electronics Documents Act (PIPEDA) : Unlike the US, Canada has a single law covering privacy and data security. Passed in 2000, the Personal Information Protection and Electronics Documents Act (PIPEDA) rests on ten principles: accountability, identifying purpose of collection, consumer consent, limiting collection, limiting use and retention, accuracy, data safeguards, openness, individual access, and consumer right to challenge compliance.
Personal Information Protection Act (PIPA): PIPEDA covers any commercial organization in Canada. Federal agencies are covered by a different law — The Privacy Act. If a Canadian province adopts substantially similar legislation to PIPEDA, a local company would instead fall under the provincial law. To date, Alberta and British Columbia have each adopted their own private sector laws, each known as the Personal Information Protection Act (PIPA). Their laws are very similar if not exactly the same. The purpose of this Act is to govern the collection, use and disclosure of personal information by organizations in a manner that recognizes both the right of individuals to protect their personal information and the need of organizations to collect, use or disclose personal information for purposes that a reasonable person would consider appropriate in the circumstances.
General Data Protection Regulation ("GDPR"): The GDPR is a European regulation that takes effect on May 25, 2018. It is designed to protect the "Personal Data" of European Union citizens wherever they may be. Enforcement of the law is not limited to European companies, but can extend to any organization that holds in custody the private information of EU citizens. It covers all types of personal data, not specific industry related data (which is different than the US approach to privacy protection . . . see below). The US-EU "Privacy Shield" governs how personal data are shared between the two continents, which is why US organizations need to respect GDPR rules.
Fair and Accurate Credit Transactions Act (“FACTA”): FACTA, enacted in June or 2005, impacts anyone who handles the storage and disposal of certain “consumer information.” It requires any business that maintains or otherwise possesses consumer information to properly dispose of the information.