Secure ITAD solution for the Finance industry

Financial

With data breaches regularly making news, financial services organizations are under closer scrutiny than ever before, with attention coming from customers, regulators, elected officials and investors alike. We work closely with leading banks, insurance, credit and other providers to prevent data security missteps that can be extremely damaging at the civil, criminal and regulatory levels.

Prevent fraud before it occurs, by utilizing the data security services available with PureITAD.

We’ll help you earn and maintain your clients’ trust by assuring protection of critical financial information through data destruction and sanitization. We also ensure that your data reporting is accurate and compliant with all industry specific regulations.

Comprehensive Data Security for Financial Institutions

Customer privacy and confidential data security are more important than ever, but due to the recent surge in identity theft, the financial industry needs to take these concerns more seriously than ever.

PureITAD works with banks, insurance companies, brokerage houses, mortgage companies and other financial institutions by helping them with their computer disposal needs and also helps to protect data security and your clients’ privacy. We are proud to provide our customers with sound environmental solutions and comprehensive data security. From simple financial information to highly confidential tax, mortgage and brokerage records, data security is rapidly becoming a critical issue for the financial industry.

Financial and Banking Industry Solutions

With future computer upgrades it can become a headache - and very time consuming - when trying to comply with all privacy laws and responsibly dispose of computer systems. PureITAD eliminates these headaches while maintaining complete data security. We work with banks and financial institutions to completely destroy data on outdated computer equipment and dispose of every trace of sensitive customer information.

Our solution to your data security needs is a removal of data based on the NIST 800-80 and Department of Defense (DOD) 5220-22-M standard. Once this process is done correctly, information on the drive is irretrievable, allowing these systems to be recycled, resold or disposed of properly, in an environmentally responsible manner. For especial projects, where we have damaged hard drives, or special destruction needs, PureITAD works with our clients to deliver a fully customized On-Site Physical Data Destruction service.

Our customized ITAD solutions, not only meet but exceed the following regulatory compliance requirements:

Payment Card Industry Data Security Standard (“PCI - DSS”): PCI-DDS are rules in place for merchants that handle consumer data from credit cards. The rules come from the PCI Security Standards Council, which was founded by the five leading global payment plans to unify data security standards.

Personal Information Protection and Electronics Documents Act (PIPEDA) : Unlike the US, Canada has a single law covering privacy and data security. Passed in 2000, the Personal Information Protection and Electronics Documents Act (PIPEDA) rests on ten principles: accountability, identifying purpose of collection, consumer consent, limiting collection, limiting use and retention, accuracy, data safeguards, openness, individual access, and consumer right to challenge compliance.

Personal Information Protection Act (PIPA): PIPEDA covers any commercial organization in Canada. Federal agencies are covered by a different law — The Privacy Act. If a Canadian province adopts substantially similar legislation to PIPEDA, a local company would instead fall under the provincial law. To date, Alberta and British Columbia have each adopted their own private sector laws, each known as the Personal Information Protection Act (PIPA). Their laws are very similar if not exactly the same. The purpose of this Act is to govern the collection, use and disclosure of personal information by organizations in a manner that recognizes both the right of individuals to protect their personal information and the need of organizations to collect, use or disclose personal information for purposes that a reasonable person would consider appropriate in the circumstances.

General Data Protection Regulation ("GDPR"): The GDPR is a European regulation that takes effect on May 25, 2018. It is designed to protect the "Personal Data" of European Union citizens wherever they may be. Enforcement of the law is not limited to European companies, but can extend to any organization that holds in custody the private information of EU citizens. It covers all types of personal data, not specific industry related data (which is different than the US approach to privacy protection . . . see below). The US-EU "Privacy Shield" governs how personal data are shared between the two continents, which is why US organizations need to respect GDPR rules.

Fair and Accurate Credit Transactions Act (“FACTA”): FACTA, enacted in June or 2005, impacts anyone who handles the storage and disposal of certain “consumer information.” It requires any business that maintains or otherwise possesses consumer information to properly dispose of the information.

Questions about ITAD services? Ask an expert!

Contact us