With the introduction of the new privacy laws in March, it is now more critical than ever that businesses and organisations have a clear strategy for the disposal of data. The most common place where data is stored in most small businesses is on hard disk drives.
Whether hard drives are on personal workstation PCs or servers, all data is retrievable no matter what type of hard disk erasing has been performed. Even reformatting hard disks will not delete all data - information can still be retrieved using various tools and software. For this reason if your business or organisation is disposing of old computers, the only safe way of protecting data is by having all hard drives destroyed.
A certified hard drive destruction facility has specialised equipment that can physically destroy all parts of the hard drive, leaving any data permanently irretrievable. The other option available is to have your hard drives degaussed. Degaussing is a process whereby a special magnetic field renders the storage mechanism of the hard drive useless - any data is erased and cannot be accessed by any means.
Because the new privacy laws place the onus on business and organisational management to protect privacy, having old hard drives destroyed and disposed of correctly is now the only viable security option. If old hard drives and computers are simply disposed of as waste, there is always the possibility that data can be accessed and security compromised. This is why it is critical to choose the correct provider who can guarantee security and protect you in the case of a privacy audit. Organisations like SDDC are AAA rated by NAID, and provide your business with a certificate of destruction which you can show in the case of an audit. This certificate shows that you are fully protected and all data has been correctly destroyed.
For more information on the new privacy principles, you can access our privacy law summary page. This outlines what you can do as a business to abide by the new privacy principles introduced in March.