Let’s rip this one from the headlines. This isn't about politics, but utilizes it as
a backdrop to emphasize the need to never take your eyes off the ball where
your sensitive business data is concerned.
IRS Commissioner John Koskinen has stated before Congress
that Lois Lerner’s hard drive was scratched and then shredded. When pressed, Commissioner Koskinen could not
state the hard drive had definitively been shredded, only that it had
potentially been shredded. He could not
identify the chain of custody for the hard drive in question nor provide
documentation as to whom had physically destroyed the drive and who had witnessed
the destruction. Someone told Commissioner
Koskinen the hard drive had been shredded and that was good enough for
him. For a situation as politically
pressing as the whereabouts of Lois Lerner’s hard drive, Koskinen’s actions
would lead people to believe he actually has no idea as to what actually
happened to the drive.
Data is Money
I spent many years dealing directly with data. It was drilled into everyone within the
industry that data is money. If you took
possession of records (data) you were responsible for what happened to the
records. Individuals were keenly aware
any misuse of the data would result in additional charges, fines and potential
lawsuits. If, God forbid, the records contained
credit card or social security information they were treated like unstable nitroglycerin. Regulations and potential lawsuits drove many
service bureaus out of storing volatile databases. The risks outweighed the rewards.
So, What’s It to Me?
As a business owner you have an obligation to protect your
patients, customers, clients, and employees from potential harm from the misuse
of their information. The improper
handling of obsolete hard drives can cost clients substantial income, reveal
patients private information, and put customers and employees at risk of
identity theft. It is critical your
business has an established procedure for the destruction of sensitive
information when you retire obsolete computers and servers.
What Should I Do?
Digital data sanitization is the best method you can take to
insure your business does not inadvertently share private information. By performing this task in-house before
entrusting used equipment to a recycling contractor protects you and your
business from accusations and potential losses in the future.
Implementing the use of WipeDrive by WhiteCanyon™ Software
can insure hardware doesn’t leave the office with your data. The three-pass wipe uses several wipe patterns
and is approved by the U.S. Dept. of Defense.
Data sanitization is a safe, easy method of data security that gives your
customers the peace of mind that you are watching out for their security. WipeDrive is a permanent solution for data
sanitization.
Common Sense
I know some of this information is common sense for a
business or practice handling sensitive data and using storage devices. The current coverage of the Internal Revenue
Service and the Lois Lerner hard drive show common sense is not always commonly
practiced. An organization handling some
of the most sensitive information of individuals and businesses cannot definitively
state what happened to a hard drive or confirm the data was destroyed. It is imperative to learn from the IRS' error in data sanitization to protect you and your business.
For more information about utilizing WipeDrive to protect your sensitive information, contact WhiteCanyon Software at 801-224-2952.
No comments:
Post a Comment