4 Steps to Avoid Mistakes in Physical Data Management

Recently we have been discussing in detail the risks associated with digital devices and cyber security however physical documentation needs to be secure too and there are some measures you can put in place to ensure this is paramount.

Files

1.      Index your files

The majority of the files that your business will gather over time may never even be used or accessed after a certain length of time. Having an indexing system in place will allow you to keep track of each and every document, when they are received and what purpose they serve for the company. It will be convenient for finding and accessing documents efficiently.

2.      Retention & Disposal Schedules

Included with your indexing system you can schedule each documents lifespan. The recommended maximum time to keep most documentation is seven years however this will depend on the individual document. Therefore, when you index each file add an end date. It will allow you to quickly find anything you need. It will also assist you in removing the clutter of documents you no longer need and keep you compliant with the ‘EU General Data Protection Regulation’ (GDPR)

3.      Storage

Use document storage boxes which are secure and locked. Taking all of these precautions and then having a filing cabinet which is open and accessible to anyone and everyone will just undermine any security measures you have put in place.

4.      Shredding

Last but not least is your method of destruction once your documents have reached their use by date. You will need to decide what kind of service best suits you; onsite shredding or offsite shredding. Having your secure paper shredding service scheduled regularly can be convenient. Just contact us and we can discuss what option would suit you best.

Shredded Paper

Why I need to Shred – Shredding Company or In-House?

Why do I need to Shred Data?

On the 25th May 2018 a new law came into play, The General Data Protection Regulation (GDPR) affecting businesses of all shapes and sizes.

All business, Irish Business or International generate and process data through their operations. This data has to be created, managed and destroyed (i.e. Through a Paper Shredding Service, In-house Shredding and/or Hard-Drive Shredding Service).

The GDPR splits data mainly into two categories;

Personal Data (i.e. information which can directly connect to or identify a living person such as; name, phone number, medical history etc.)

Special Category Personal Data (i.e. personal data in relation to; ethnicity, political/philosophical opinions/beliefs, religion, mental health, criminal records etc.)

Each of the above categories have specific requirements when processing such information. This means it is important to know what category you are processing.

Enforcement Authority

Each EU state has an independent public authority accountable for enforcing the implementation of this regulation. This is the Data Protection Commission in Ireland.

The GDPR harmonized the rules to how data is to be managed in order to protect individuals. The management includes, the gathering/creation of the data through to the final destruction/disposal of the data through a paper shredding service or IT Asset Disposal Service.

Paper Shredding, Data Management, GDPR, Onsite Shredding Service, Shredding Service

There are serious implications that can occur if a business does not follow the GDPR requirements. It may be a warning or  a large penalty of at least 4% of your annual global turnover or €20 million – whichever is higher. Compliance is essential.

Shredding Service Industry Associations

There are many associations across the world for Shredding Companies to become a member. This provides peace of mind for individuals as the Association can apply guidelines for their members to be compliant with International Legislation.

Length of Time Storing Data Prior to Secure Shredding / Data Erasure

Information must be kept for as little time as possible. It is important to take into account why your company needs to store this data; is there a legal obligation? A system should be put in place with time limits/reviews and updates to out of date information/data.

To summarise, you need to shred/destroy out of date records/files/documents because it is the law. In order to be fully compliant it is invaluable to use a quality certified destruction service that will not only ensure all data is eradicated but will also provide compliance certification for your records. This will be invaluable when proving that your company/business is fulfilling their obligation to the GDPR.

The law is reason enough to shred on its own but how do businesses know what service best suits them? In our upcoming blog posts I will be discussing different types of shredding, what makes the shredding company you choose legally compliant and if onsite or offsite shredding would work best for you?

For Further info – please contact the team at Security in Shredding info@securityinshredding.com

How college students can protect their identity – Presidential Election or not

Onsite paper shredding company, onsite paper shredding service, confidential paper shredding service, offsite paper shredding service, professional paper shredding service, paper shredding companies, paper shredding company

Image source: factolife

While the US presidential election is heating up as it comes to the closing weeks, identity theft is still being committed at seriously high rates.

In this article we will take you away from the US Republic and Democrat debates, campaigns and news to highlight some handy tips for college students to protect their identity. It is more than simply availing of a confidential paper shredding service or completing your document destruction at home with an onsite paper shredding service

Amongst all of the people that are vulnerable of being victim of identity theft, college students are possible the highest risk sample. All young and mature students need to be made aware of this so they are armed with the appropriate information to protect themselves and their identity.

Even with the majority of students across the world tending to be “strapped for cash” this does not dis-incentivise these thieves from attempting to steal their identity. In the majority of cases these thieves only want to take advantage of a clean credit record. Below there some brief points on how students can become aware and safe against identity theft.

Paper shredding Dublin, paper shredding Cork, Paper shredding Galway, Paper shredding Limerick, offsite paper shredding service Ireland, off site paper shredding service Ireland, Off site shredding service Ireland, mobile paper shredding Ireland

  1. Always ensure that personal sensitive mail is only sent to your personal email address. College emails can be extremely vulnerable to hacking. When your old computers are being replaced, always avail of a hard-drive shredding service where the data bearing hard-drive is securely destroyed and the data is irretrievable.
  1. Store important documents under lock and key. Keep them safe and secure and once you no longer require them always, always have them securely destroyed through a shredding company. Never just throw these document away, there are a number of solutions available to have these document destroyed. Examples would be an onsite paper shredding service, an offsite paper shredding service as long as the service is certified for confidential data destruction service
  1. Never allow other people to borrow your credit card, even if it is a family member. Another handy point is to never be a co-signer for any loans.
  1. Always have up to date anti-virus on your computer devices.
  1. Credit card and debit card statements, review regularly for any suspicious activity.
  1. Only shop on familiar websites. You should always be certain that the business is legitimate.

For any further information upon how to protect your identity please contact one of the Security in Shredding team and visit our website www.securityinshredding.com

You can also follow us on
Twitter, YouTube, LinkedIn, Google+

Confidential Paper Shredding Industry welcome Budget 2017 increase in funding for The Data Protection Commissioner

off site paper shredding service Ireland, offsite paper shredding service Ireland, paper shredding Dublin, paper shredding Cork, paper shredding Galway, paper shredding Limerick, secure document shredding Dublin, secure document shredding Cork, secure document shredding Galway, secure document shredding Limerick, confidential shredding Dublin, confidential shredding Cork, confidential shredding Galway, confidential shredding Limerick, shredding companies Ireland

Image source; memcreator

This week confidential paper shredding service vendors welcome the decision in this weeks budget for additional funding being allocated to The Data Protection Commissioners office. The additional funding makes up an increase of €2.8 million to the previous figure. This increase brings the total funding from The Irish Government for 2017 to €7.5 million. This much welcomed funding will be allocated to police and enforce the Data Protection Acts and protect Irish citizen’s data.

Even with the relatively small geographical size of Ireland, it has been difficult for the policing authority to monitor all activates by Organisations to ensure compliance with Data Protection.

An example; it can be difficult to investigate whether Organisations are complying with requirements for Data Processing (paper shredding) Cork while also completing the same for paper shredding Galway with almost 200 Kilometres in-between. The welcome news will certainly make an improvement in Ireland for Data Protection compliance and in turn protect our personal information.

off site paper shredding service Ireland, offsite paper shredding service Ireland, paper shredding Dublin, paper shredding Cork, paper shredding Galway, paper shredding Limerick, secure document shredding Dublin, secure document shredding Cork, secure document shredding Galway, secure document shredding Limerick, confidential shredding Dublin, confidential shredding Cork, confidential shredding Galway, confidential shredding Limerick, shredding companies Ireland

Whether it be confidential paper shredding Dublin or confidential paper shredding Limerick this announcement will help The Data Protection Commissioner to increase their employee numbers and enable them to fill in their new role with The General Data Protection Regulation from Europe.

Vice Chairman of the ISIA (SDD Division) said “This additional funding is a great step to further protecting European citizen’s personal data. With fines for a breach of legislation increasing up to €20 million it is a welcome announcement and Organisation now have the opportunity to comply.”

Shredding Companies Ireland will also have to make the leap to become compliant data processing firms, today there can be a number of high risk vendors in operation and education is the first step in protecting our data.

For any advice upon data protection and making your Organisation compliant please do not hesitate to contact one of our team through our website www.securityinshredding.com.

You can also follow us on
Twitter, YouTube, LinkedIn, Google+

10 Tips for protecting sensitive data in your Organisation

Shredding Companies Ireland, Confidential shredding limerick, confidential shredding Galway, confidential shredding Cork, confidential shredding Dublin, offsite document destruction, offsite document destruction, offsite document shredding, off site document shredding

Image courtesy of: ts-designs

The two main reasons why Organisations need to protect their data through hiring shredding companies Ireland or establishing security protocols are;

Reputation & Legislation both of which effect the financials of any given Organisation.

All companies inclusive of Shredding companies Ireland need to have some best practices in place to protect their sensitive data.

Historically legislation has varied from region to region within the EU which meant for example; a company receiving confidential shredding limerick may not be subject to the same fines, penalties and procedures as an Organisation receiving confidential shredding Paris.

With the new General Data Protection Regulation coming into effect the legislation will be harmonised across Europe. In 2018-2019 Organisations who experience a data breach through failing to have off site document shredding services in place will receive fines that will be subject to the same criteria as another Organisation may be in another region within Europe.

Shredding Companies Ireland, Confidential shredding limerick, confidential shredding Galway, confidential shredding Cork, confidential shredding Dublin, offsite document destruction, offsite document destruction, offsite document shredding, off site document shredding,

Image courtesy of: fedemac

Below is a small list of;

Ten Top Tips for protecting sensitive data within your Organisation;

  1. Ensure that all passwords are encrypted in nature. Do not have passwords easy to remember and introduce an encrypted method for password production.
  2. Protect against new malware. Constantly update your software to protect your Companies sensitive information. New malware is being released all the time so you need to be up to date to be protected.
  3. Eliminate USB Key memory drives. When possible Organisations should have a USB ban as it could lead to data being lost from your Company.
  4. Education, knowledge is power. Organisations are advised to run education courses for staff with specific responsibility for Data Protection.
  5. Be ready for disaster. Create a plan of action to follow in the case of a data breach. Fast and effective procedures for disaster reaction can make a significant difference to legal ramifications & your corporate reputation.
  6. Have reward systems vs penalty systems in place for staff. In an event of a data breach the key thing to take away is “what have we learned from this?” vs how will I punish the given employee.
  7. Be lenient with employee internet rules;
    1. A lock down scenario is not advised as studies have shown that it increases the likelihood of staff working around these sanctions while also putting your Organisation’s information at risk. Speak with staff, find out what they want and plan the best method of granting it to them.
  8. Establish a remote wipe facility;
    1. Leaving and losing mobile devices containing sensitive data is a growing concern for Organisations today. It is advised that you should encrypt all data on these devices and have a remote wiping facility.
  9. All confidential Information needs to be Encrypted.
    1. Do not make it easy for people to get access to information.
  10. Inclusion of staff. Include staff in all data protection control implementation. Do not depend on general information streams to effectively communicate the new rules and procedures in place, make specific meetings with the specific departments to effectively communicate your message.

For further information upon how to protect your Organisation from Data loss please contact one of the Security in Shredding Team.

Email: info@securityinshredding.com

Save

Save

Secure Data Processing – What is it?

Security in Shredding Confidential Paper Shredding

Data processing can be defined as “the carrying out of operations on data to retrieve, transform, or classify information”. When completing paper shredding Dublin, paper shredding Limerick or Paper shredding Ireland you are transforming confidential documents that are highly valuable into destroyed paper which is ready to be recycled and holds a value that the recycling market dictates.

Before paper documents enter a destruction process they have a high monetary value to the fraudulent industry as they can be used for identity theft to name but one use.

Video Source: Keppler Speakers

It is important never to treat your waste paper material as a waste product as it is far more valuable than waste. Not alone are the theft issues serious risks but there is also significant fine for Organisations that experience data breaches which are due to go up to 20 million euro.

Another important factor is that The Data Protection Laws apply to “data”, there is no reason to think that paper equates to “data”. It is for this reason that a secure data processing service that destroys all of your waste paper material is implemented instead of a simple offsite paper shredding service as you need to be certain that your service provider acknowledges that it is your data that they are destroying.

For more information upon waste paper management either our Off site shredding service Ireland, or our mobile paper shredding Ireland service please email info@securityinshredding.com

Save

Save

Why is waste office paper not actual waste? (Onsite Paper Destruction)

sis-shredded-paper-photo-6

Historically and in some cases today people and Organisations have disposed of waste paper through waste recycling streams and have not hired in an Onsite shredding service nor an offsite shredding service for documents that are no longer required.

Within this blog entry I will be discussed Waste Vs Data (Liability).

Under Waste Management Legislation paper contains a European Waste Catalogue (EWC) Code, now this code means that the material needs to;

  1. Be recycled in line with The European Waste Hierarchy
  2. Be handled and processed through an Organisation that have a waste permit.

Having a waste permit does not mean that you are a waste company and in turn, having systems in place to recycle paper does not mean that you are a Data Processor that provides paper shredding services (I will cover this in more detail later).

Organisations such as Construction firms, Removal firms and Storage firms have waste permits in order to carry their materials but none of these firms are waste operators.    With this in mind, why would you release your confidential information that holds legislative fines of up to 20 Million Euro to a waste firm to recycle for you? Even if the waste firm offers “secure paper shredding services”, there is still no reason to justify releasing your data to them based on your legislative responsibility and obligations.

Off site document shredding

Data Processor Vs Materials Processor

A Data Processor is a person/Organisation who processes (E.g. Destroys) personal data on behalf of a Data Controller. A Data Controller is a person/Organisation who controls the contents and use of personal data (Any Organisation).

The key point to take away here is that Data Protection Laws only apply to Data Processors and Data Controllers. So, if a Data Controller (You) releases “waste” paper DATA to a waste firm to be recycled (Securely or not), under Data Protection Law you have released personal data to an Organisation who may not be a Data Processor and the waste firm may understand it as you (The Data Controller) has actually releases waste material (Paper material) for recycling. In the case of a data breach occurring here who do you feel will be at fault and who will receive the fines of up to 20 Million Euro, yes your correct, it will be you The Data Controller.

So when you are deciding upon what paper shred service to implement within your business, it is important to understand that you need a Data Processing Firm to destroy that data for you. If an Organisation is for example offering secure onsite paper shredding or secure offsite paper shredding they need to acknowledge that it is Data that they are processing for you.

For more information upon Data Protection and how to protect your business please contact one of our helpful team at;

info@securityinshredding.com

Top Tips; Why use a clean desk policy? (Onsite paper destruction)

Off site document shredding, offsite document shredding, off site document destruction, offsite document destruction, shredding Ireland, Onsite paper destruction, offsite shredding service Ireland, off site paper shredding service Ireland, offsite paper shredding service Ireland

Why? (Clean Desk Policy & Document Shredding)

This is simple, if you do not have a clean desk policy and complete either onsite paper destruction or use an offsite paper shredding service you are increasing the amount of risk that your Organisation is subject to.

New Regulation (Encourage Onsite Paper Destruction)

With the introduction of The New General Data Protection Regulation this year, Organisations failing to appropriately manage their waste paper data and go on to experience a data breach can be subject to fines of up to 20 Million Euro in 2018.

With that said, the importance for Organisations to have appropriate procedures in place for waste document destruction has become a leading factor for senior management today. Examples of such systems would be an Offsite document shredding service, an offsite document destruction service, an onsite document destruction service or in-house paper shredding Ireland.

Security in Shredding Confidential Paper Shredding

A Clean Desk Policy helps protect your Organisation, your clients and your reputation amongst the general public. Within all Organisations there is data the is “Sensitive in Nature” and most business activities require confidentiality. With everyone in the office having contact with certain information it is essential for them to protect that data from unauthorized access. Your Clean Desk Policy will help reduce the risk of information leaking from your Organisation and increase the overall data security making sure all unneeded information enters your offsite paper shredding service Ireland.

In addition to overall security through ensuring all waste paper is destroyed through your offsite document shredding service, studies have shown that when employees are in a clean work environment their work efficiency increases. This productivity increase will translate to your customers increasing their peace of mind and in turn potnetially increasing your client numbers.

When a client is aware of your procedures they will increase their trust in your Organisation as they know that no data will be left unattended and all data no longer required will be securely destroyed through your off site paper shredding service Ireland.

Off site document shredding, offsite document shredding, off site document destruction, offsite document destruction, shredding Ireland, Onsite paper destruction, offsite shredding service Ireland, off site paper shredding service Ireland, offsite paper shredding service Ireland

This is the third and final part of our three-part blog on constructing and implementing your clean desk policy. For more information upon Clean Desk Policies please contact one of our team at Security in Shredding, we are happy to be of help with this serious topic of Data Protection.

Contact info@securityinshredding.com

Creating a Clean Desk Policy (Document Shredding Service)

Onsite shredding service, On site shredding service, Onsite paper destruction, On site paper destruction, shredding documents, document shredding servicesBefore we go into the specifics of your Document shredding services Ireland whether you are receiving an Onsite shredding service Ireland or allocating staff for shredding documents it is good to be familiar with a Clean Desk Policy and how to implement it successfully.

What is a Clean Desk Policy?

Well it is exactly what it says on your Data Protection Tin. It is an information security policy where all staff are to maintain a clean desk environment. We are all too used to a scenario of coming and going to the printer, taking notes from meetings, answering phone calls and responding to emails and before you know it your office desk has sensitive documents pilling up. We do not always place the importance of onsite destruction of that data into our busy days and we often tend to prioritise other activities.

Well with the introduction of New Data Protection Legislation increasing fines up to 20 MILLION EURO the priority for document shredding services to be in place has become No. 1, whether it is an onsite shredding service or an onsite paper destruction system implemented it simply has to be done and done correctly.

Document shredding services, shredding documents, on site paper destruction, onsite paper destruction, On site shredding service, Onsite shredding service

 How to create the Clean Desk Policy (Onsite paper shredding)

It is recommended that all staff are made aware of the clean desk policy and the importance for maintaining their tidy environment and using your on site shredding service to get rid of unwanted and unneeded documents.

We at Security in Shredding constantly advice our clients to use our Triple “S” method for creating their clean desk policy successfully.

SCHEDULE your Day!!

First thing in the morning, all employees are to plan their day and/or make any needed amendments from planning made the previous day. Just keep things that are required on your desk and anything unneeded should be segregated and destroyed through your onsite shredding service. It will only take a few minutes but an accurate schedule is invaluable.

Document shredding services, Shredding documents, On site paper destruction, ON site shredding service, Onsite shredding service

Keep SAFE/SECURE!!

Never leave your desk with sensitive paper data left out. Most will have to leave their desks at some point during their day to fulfill their duties but whenever you do, file away anything no longer required for that day and securely destroy anything that is no longer needed at all. It is important to securely destroy the unneeded material through an onsite shredding service and receive your certifications of compliance.

SECURE SHRED!!

It is amazing how paper will pile up, just ask anyone who has completed end of year paper shredding clear outs. With this in mind, do not let paper that is no longer required to enter long term storage, whether that storage is in a filing cabinet, drawer of your desk of in a pile beside your PC, always make certain to destroy the paper with a document shredding service or an onsite paper shredding service.

Document shredding services, shredding documents, On site paper destruction, Onsite paper destruction, On site shredding service, Onsite shredding service

For more information upon our Clean Desk Policy and tips as to how to create one please contact one of our team, we are always here to help with your Data Protection concerns.

Contact www.info@securityinshredding.com

Save

Save

Do’s and Don’ts – paper shredding service.

Security in Shredding Confidential Paper Shredding

When securely shredding your old paper data it is advisable to opt for a secure paper shredding service. Whether you are paper shredding Cork, Paper Shredding Galway or Paper shredding nationwide you should remember that a secure paper shredding service is best suited to save time, money and gives you peace of mind.

Onsite document destructionPaper Shredding Don’ts

  • Don’t be tricked into giving away confidential information. Don’t leave sensitive information lying around the office.
  • Don’t release your data to a general waste vendor unless they have independent certified credentials for their paper shredding service.
  • Make sure that it is only paper information that enters the paper shredding process, aerosol cans and batteries can cause a fire to occur during the paper shredding service and this is certainly something that you do not want to occur.
  • Do not remove paper clips and staples from the paper, a professional paper shredding service can handle these small items.
  • Do not always go with the cheapest option, Data Protection is such a serious topic today with fines of up to 20 million for data breaches, the cheapest service option may not have you compliant with the Law. In this case the risk cost associated with receiving the service far outweighs the savings you may make receiving the service.

Paper Shredding Do’s

  • Go through your paper files to double check what you are shredding when hiring a paper shredding service.
  • Make sure that you are receiving a paper shredding service that is certified for the European Standard EN 15713, this standard proves that the vendor has appropriate procedures in place to handle your paper data
  • Make sure that the paper shredding service vendor is certified for the shred sizes No.3 up to No.6 of EN 15713. Shredding service providers can receive certification for EN 15713 but not including the shred size certification means that they may not be destroying the paper beyond reconstruction. Please see table below detailing the shred sizes.

Shred-Size-Table

Paper shredding and data security is and on-going effort for all businesses and private individuals today. Data is here to stay and that means that the threats associated with it are here to stay too.

Stay safe and secure, the risk cost is well worth the effort for security.

For further information and on site paper shredding advise please contact one of our team at info@securityinshredding.com