Whenever you look for the right person or company to do a job, whether it’s a contractor or a company to handle your shredding needs, you want to know if they have the right certification. And we have it. RMS is AAA-certified by the National Association for Information Destruction (NAID). The task of the NAID is to establish and maintain the education and promotion of secure, standardized procedures for destruction of documents and media.
In order to become AAA-certified, a member (like RMS) must go through an application and qualification process. Once certification is obtained, the benefits for the customers include:
- You establish a recognized selection criteria, effectively satisfying several legal requirements associated with information protection laws and regulations
- You know that the AAA-certified company conducts background checks of its employees and cannot hire employees associated to related crimes
- Employees also go through a random drug testing program and the company have high levels of business liability insurance to protect the company and clients’ best interests
- Security and operations policies and procedures are written and followed.
- Destruction equipment is functioning properly.
- Access to materials is restricted at all times.
- Containers and vehicles protect information from unauthorized access at all times during transport and processing.
- NAID conducts ‘surprise’ audits of its members to ensure compliance
These benefits are just the beginning, but ultimately, the greatest benefit is passed on to the client in the form of peace of mind knowing that their needs are met by a company that meets superior standards and practices in the industry. RMS is a NAID AAA-certified team, and you can get these benefits and more from our services.
Part of the certification is remaining in compliance with current laws on the books in regard to privacy, proper destruction of sensitive data, and following proper procedure. We have a host of laws at both the state and federal level with which we must comply. Our compliance with these laws means your compliance with these laws. We take compliance with these laws with a great deal of gravity, as we know you would expect no less from us.
RMS provides you with services to comply with a variety of laws and legislation designed to protect individuals from having their personal information compromised. In order to help you, our customer, know what these laws do, we have provided a brief description of some of these laws that pertain to you and how we help you remain in compliance.
This law was enacted in 1996 and pertains to any business entity in the medical industry, including hospitals, pharmacies, and doctors. This law states that medical information must be protected for each individual’s case. Shredding records is one safeguard built into the law.
-Gramm-Leach-Bliley Financial Services Modernization Act:
This law, enacted in 2000, is geared toward financial institutions and insurance companies. It requires these institutions to notify customers before sharing personal information and allows those customers to opt out of such a decision. It also requires personal information to be protected and properly destroyed by those institutions.
-The Fair and Accurate Credit Transaction Act (FACTA):
Generally, this act was meant to enhance certain aspects of the Fair Credit Reporting Act, but it also establishes uniform standards for the handling and disposal of consumer information.
-Disposal of Consumer Report Information and Records:
In short, this requires that anyone holding consumer information for a business must keep unauthorized access from occurring and allows for any reasonable measures to be used in that effort. RMS provides those reasonable measures.
-Federal Privacy Act of 1974:
This law was established to ensure government agencies protect the privacy of individuals and businesses and holds them liable for any breach of privacy.
-Economic Espionage Act of 1996:
This is the first federal law to define and punish the misappropriation and theft of “trade secrets.” However, under the law, the government can only protect those who have taken “reasonable measures” to keep those trade secrets from being stolen.
-The Sarbanes-Oxley Act of 2002:
Sometimes called “SOX” for short, this law defines which records should be kept and for how long. This includes electronic records as well as hard copy records, and consequences for non-compliance is harsh, including fines and prison time. This law not only affects financial aspects of corporations, but also IT sections.