The General Data Protection Regulation (GDPR) is the most widely quoted and copied regulation around the world on data privacy and protection. It includes an individual’s right to be forgotten; the right to erasure when personal data is no longer necessary for the...
Security Resources
Browse our Resource Library:
Health Information Portability and Accountability Act (HIPAA) Health Information Technology for Economic and Clinical Health Act (HITECH Act or “The Act”)
The HIPAA Security Rule sets the standards for the security of electronic personal health information. The Security Rule specifies a series of administrative, technical, and physical security procedures for entities to use to assure the confidentiality of electronic...
DOD & NSA/CSS REGULATIONS Regulations set by the Department of Defense (DoD) and the National Security Agency/Central Security Service (NSA/CSS)
The Department of Defense (DoD) Directive 8500.01, assigns Information Assurance responsibilities to Defense Agencies; this guidance assigns the National Security Agency (NSA) the responsibility to determine procedures and write policy for the complete, 100%...
What is a Degausser and Why They Are Important
What’s a degausser? We talk about degaussers a lot when it comes to data destruction. Put simply, degaussing is the process of permanently eliminating data stored on magnetic hard disk drives and backup tapes. Degaussing scrambles not only the data but also the servo...
Health Information Technology for Economic and Clinical Health Act (HITECH Act or “The Act”)
Health Information Technology for Economic and Clinical Health Act (HITECH Act or "The Act") The Health Information Technology for Economic and Clinical Health Act (HITECH Act or "The Act") is part of the American Recovery and Reinvestment Act of 2009. Under the...
Payment Card Industry (PCI DSS)
The Payment Card Industry (PCI) Data Security Standard directs to “Destroy media containing cardholder data when it is no longer needed for business or legal reasons as follows: Render cardholder data on electronic media unrecoverable so that cardholder data cannot be...
Gramm-Leach-Billey (GLB) Act
Many financial institutions collect personal information from their customers, such as their names, addresses and phone numbers; bank and credit card account numbers; income and credit histories; and Social Security numbers. The Gramm-Leach-Bliley (GLB) Act requires...
National Institute of Standards and Technology (NIST)
The National Institute of Standards and Technology (NIST) Special Publication 800-88 Guidelines for Media Sanitization assists organizations in implementing a media sanitization program with proper and applicable techniques and controls for sanitization and disposal...