Tag Archives: Compliance

Onsite Document Shredding Available Near You

Posted on by
Reply

Security in Shredding Confidential Paper Shredding

Confidential document shredding services, document & product destruction are services available through Security In Shredding. Our quality service provides security and confidentiality to document destruction services.

Security In Shredding are specialists in confidential documents & product destruction services. We regularly provide these services to government departments, public and private companies as well as home owners throughout the Republic of Ireland.

Onsite shredding is internationally recognised as the most secure method of destroying sensitive and confidential paperwork. Shredding to a Din level 6 is a security standard which is vital for the security of data destruction.

Available Near You!

Security In Shredding on site shredding trucks are available in the Republic of Ireland. A once off large shred is available or scheduled of on call services are also available to suit your needs.

We offer a range of destruction solutions for all your paperwork, hard drives, videos and all electronic office equipment. Fully licensed and NWCP, your confidential material is safe with Security In Shredding. We are a data processor and once we have your documents, it is our responsibility to destroy the documents.


Maintaining confidentiality is essential in today’s business world. Now more than ever data security and data protection is vital for business success. More than for business success, it is the law to protect your data under the data protection act.

We provide our customers with the most secure method of confidential document destruction available, fully transparent with same day shred for collection services.

harddrive destruction, Media Destruction, Confidential Shredding Service

We Destroy Digital Data Devices

Along with protecting confidential paper documents. Your digital data must be protected also. Ignorance and human error are major risks with digital devices. One method that ensures data destruction is to physically destroy the drive. Our IT & Media Data Destruction Systems provide a 100% guaranteed destruction policy.

Call us today for any enquires you may have regarding our Shredding Services and or IT & media destruction, then email us at: info@securityinshredding.com

Confidential Paper Shredding In Limerick & Galway

Posted on by
Reply

Security in Shredding Confidential Paper Shredding

Why Should I Shred My Paper Documents?

Does your business or organisation use paper on a daily basis? Does this paper contain data of personal details? These are simple questions but if answered yes then you are required by law (both Irish and EU law) to ensure that your sensitive data is destroyed correctly.

If a data breach occurs, it will be your business or organisation that suffers with a hefty penalty or fine for the breach. Your current shredding company may not be liable for the breach. Ultimately it comes down to you to protect your data.

More than just a fine but the representation loss from a data breach can result in a severe loss of business if customers have no confidence with how their details are maintained in a secure manner.

How Do I Choose a Confidential Paper Shredding Company?

Any reputable shredding company will comply with Irish and EU data protection laws. Choose a shredding company that has Din 66399 Standard which is an EU directive and is used by Security in Shredding trucks when on site shredding paper documents.

A confidential shredding company that provides a Din level 6 shred, will destroy documents beyond recognition. Avoid using generic office shredders as they do NOT provide adequate data destruction. The paper shredded can be restored which is a huge data breach risk if continued.

Protecting your data is paramount for business success and recent changes to data protection laws

Choose A Paper Shredding Company Right For You

Security In Shredding on site service

When choosing your paper shredding company you have options to what service you desire. At Security in shredding we offer On Site Shredding in your premises. With this service we can provide lockable bins and our trained staff will handle and destroy your paper documents on site with our specialised truck.

This service can be done on a scheduled basis or an on call basis. We also provide clear out shredding (purge clear out) for large scale document shredding to remove clutter or unwanted documents from your office.

Off Site Shredding

If On Site shredding does not appeal or work for you then Off Site Shredding services are also available. This consists of bag collection service. Your paper to be shredded will be stored in lockable sealed bags which are provided by us. Collected by our trained staff and put into our secure vans and shredded at our location.

Once shredding has being completed, we provide you with a certificate of completion ensuring the paper shredding process has being completed. Giving you piece of mind that your paper documents were destroyed confidentially.

Shredding Limerick & Shredding Galway

For any and all your confidential shredding needs in the Limerick and Galway areas. Security In shredding offers a top quality and secure service. We comply by the Irish and EU laws and practices, to ensure that your data is protected when paper is being shredded.

For more information on our confidential shredding Limerick and confidential shredding Galway email us at: info@securityinshredding.com 

Alternatively visit our site for more information on our shredding services. www.securityinshredding.com

 

Limerick Businesses & Organisations, ISIA Event 15th June 2016

Posted on by
Reply

ISIA Secure Document Destruction Event

Weather its industrial paper shredding or data processing of any kind. Limerick businesses and organisations should attend the Irish Security Industry Association event on the 15th of June 2016.

The ISIA’s Secure Data Destruction division is delighted to announce the launch of its Guidance Document on Secure Data Destruction. To mark the launch of this guidance document, we will be holding a seminar on data protection and the secure destruction of data with an exciting line up of seminar speakers.

Secure Data Destruction

Is the theme of the event and leading experts from the industry will be giving talks throughout the event. Oisin Tobin (Mason Hayes & Curran), Jim Gregg (Irish Computer Society) and John Nealon (Irish Security Industry Association) will be the guest speakers of the event.

Who Should Attend?

Anyone with responsibility for managing data, risk or legal compliance would be highly recommended to attend the event. Managers, IT Support staff or anyone that processes data within your company or organisation would also recommend attending the event.

Those who attend will receive updates on

  • Your legal responsibilities under the new General Data Protection Regulation (GDPR).
  • The practical commercial application of the new General Data Protection Regulation (GDPR).
  • Applying the ISIA’s Guidance Document on Secure Data Destruction to your business.
  • Managing the risks your business could face when holding and destroying data.

Event Details

Date:      Wednesday 15th June 2016

Venue:   Buswell’s Hotel, Molesworth Street, Dublin 2

Time:     10:00 – 12:00 (Regestration from 09:30)

Contact Info: email events@isia.ie or call 01-4847206

Security In Shredding confidential shredding service

At Security In Shredding Data Protection and Data Destruction are vital aspects of our business model. Keeping up to date with data protection laws is vital for our business to succeed. The new General Data Protection Act text was released recently and will come into effect in 2018. Knowing these changes so we can implement them when shredding documents.

Our confidential document shredding team operate throughout the Limerick and Galway regions work with compliance to the data protection act and data protection commissioner. For more information on shredding Ireland please visit out site for more information.

Data Protection Laws Set For An Update (2018)

Posted on by
Reply

Security in Shredding Data Protection Law

The General Data Protection Regulation has now being published in the official journal:  EU Official Journal. The journal was released on the 4th of May 2016.

This will result in the GDPR entering into force on the 24th of May 2016. Provisions will be directly applicable form the 25th May 2018. Organisations will have two years to prepare to the changes. Training courses on how to prepare for the changes are available in various cites throughout 2016 and 2017.

Data Protection Ireland Journal will keep you up to date with articles and journal entries regarding the new changes.

This change will effect Irish people and a course will take place in Dublin.

  1.  Friday, 16 September 2016

  2. Wednesday, 05 April 2017

The course will start at 10:00 to 16:00 (including lunch).

The course will cost €545 plus VAT

This course provides delegates with a detailed insight in to the main provisions of the Regulation, as well as practical guidance on what organisations should start doing to ensure that they are prepared for the new changes. The content includes:

  • The scope of the Regulation, including extra-territorial applicability
  • Key definitions
  • The role of the lead authority
  • The principles relating to personal data processing, including a detailed analysis of ‘consent’ and ‘legitimate business interests’
  • New obligations on data processors
  • Data breach notification
  • New obligations for Data Protection Officers
  • Data subjects’ rights
  • Data protection by design and default
  • Codes of Conduct and Certification
  • International data transfers
  • Consequences of non-compliance

Anyone attending the event should have a basic knowledge current data protection legal requirement. For anyone who does not have any knowledge of data protection laws can get up to date with data protection essential knowledge level 1 and then data protection essential knowledge level 2.

The course is recommended to be taken by compliance officers, HR managers, Office managers, Company secretaries, IT managers, Business analysts, Records Managers, legal advisers, Database managers and others.

Compliance & Your Data Processor

At Security In Shredding confidential document shredding and all other services provided are done in compliance with the law. Data Security and Data protection are paramount objectives for us to achieve. We keep up to date with these laws to ensure that we are operating correctly when processing Secure Documents.

If your business or organisation requires a Secure Document Shredding specialist please contact one of our team members for more information.

This change not only effects us but everyone within the EU, please like and share this article or join in on the conversation on our twitter feed

4 Reasons Why A Paper Shredding Service Is Needed

Posted on by
Reply

Security In Shredding on site service

Paper shredding or document shredding is vital for protecting confidential and sensitive information / data. Most of us create and keep files with sensitive data; examples of which are bills, financial statements, marketing plans, employee files, and even delivery packages. Industrial shredding services are used by Government offices, non-commercial organizations, small and large businesses, and private citizens. These document shredding specialists will shred the documents securely beyond recognition.

1. Compliance With The Law

We all have the right to protection of personal information. The Data Protection Commissioner was put in place to enforce the obligations of businesses to protect data. Failure to comply, as there are laws that penalize improper disposal of documents with sensitive and confidential content. Businesses and Organizations that hold personal data but neglect to protect it face financial and legal consequences. Employers for example use paper shredding services to get rid of employee files which are no longer in use.

2. Positive Recycling Habit

Reducing the amount of paper used in an office is a good reduction method, while reduction also ensures that there is less of a chance data breaches from misplaced documents. The paper and documents shredded by a mobile paper shredding service will be put into a compost heap and reused at a later stage. This creates a good recycling method for your business and benefit the environment overall.

Data Protection, Paper Shredding, limeirck paper shredding

3. Preventing Identity Theft

Without shredding or destroying documents before disposing them, Identity theft is a possibility. All it takes is someone to simply look into a bin and grab what they can. With data now widely available is now more of an issue. Any data is far better shredded before disposal, all it takes is one piece of information in the wrong hands for a data breach to occur. These breaches are damaging for a business or organisations reputation.

clear out paper shredding

4. Eliminating Clutter & Hazards

Papers occupies space and cause clutter and increase the risks of fire. Once a document has served its purpose, offices need to constantly get rid of these papers as part of an organization-wide records management system. A paper shredding policy within an organisation for when to retain and destroy documents will help an employee to take care of the proper disposal and destruction of paper documents. However shredding services are available throughout Ireland and hiring a industrial paper shredding company is more cost effective.

Document shredding is important part of business practice. Mobile paper shredding services are available. Along with an awareness to data breaches and compliance with the law will ensure data security.

Security In Shredding provide high quality secure shredding services. They provide a Confidential Waste Disposal service both on site and off shredding available. If you are in the Limerick area then please visit our Limerick page for more details.

Common Mistakes Businesses Do When Maintaining Security Of Sensitive Data

Posted on by
Reply

Answer;              

Not properly classifying the sensitive information, managing it accordingly and in turn protecting it against current threats.

 

Secure Paper Shredding Hard Drive Shredding WEEE Destruction

 

As you read this from your mobile, tablet and or computer you are viewing data digitally. Paper shredding in Ireland and industrial paper shredding services offer data protection services for said devices. Knowing technology pitfalls is a massive part to data protection while also knowing how and when to share your digital information must also be considered.

There are three critical points to the proper protection of sensitive data.

  1. Data Classification

In line with European Standards; Companies must understand what data needs to be protected and create a Data Classification Policy. This policy in turn will classify data based on sensitivity. At a minimum three levels of data classification are needed.

    • Restricted: This information requires very high protection, Unauthorised dissemination would have serious terminal consequences for the company and infringe trade confidentiality obligations, contracts or laws. It is essential that the confidentiality of personal data is maintained. Otherwise there is a risk to the health and safety or personal freedom of the affected persons.

All data that reaches its end of life should be destroyed to a minimum of Shred No.6 of EN 15713 to ensure destruction beyond reconstruction.

    • Confidential or Private: This is moderately sensitive data that would cause a moderate risk to the company and could infringe legal obligations or laws if compromised. Access is internal to the company or department that owns the data. There would otherwise be a considerable risk to the social standing and financial situation of the affected persons.

All data that reaches its end of life should be destroyed to a minimum of Shred No.4 of EN 15713.

    • Public: This is non-sensitive data that would cause little or no risk to the company if accessed. Access is loosely, or not, controlled.

All data that reaches its end of life should be destroyed to a minimum of Shred No.3 of EN 15713.

 

  1. Encryption – All Organisations should have an encryption strategy in place to ensure all staff are aware and capable of utilising it correctly. The essential element to a good encryption strategy is to use strong encryption and detailed key management.

 

  1. Cloud Misuse – Essentially cloud storage translates to storing your data on someone else’s computer. When it is uploaded, the control over it is no longer only yours. Encryption should always be implemented prior to uploading to the Cloud. It is always advisable to read through the cloud providers policies with regard to handling data.

 

The most important thing for business is to be aware of the technology pitfalls. Secure document destruction in Ireland and its data protection laws are different to other countries. While the laws may be different country to country, the method of data breaches are usually the same. The more you know the better you can protect yourself and business from data breaches.

For more information on a secure document shredding service in the Dublin, Cork, Limerick or Galway area please visit: www.securityinshredding.com

Feel free to join in on the conversation @securityinshred

Responding To Data Breaches

Posted on by
Reply

Secure Paper Shredding Hard Drive Shredding WEEE Destruction

Paper Data;

Without a confidential document shredding service in place for shredding documents and media devices. Your company or business may become under scrutiny for not having these defensive measures in place to begin with.

It is common practice for a business to securely deal with paper documents in its handling, who can access it and how it is destroyed. Most businesses and organisations will incorporate a reputable paper shredding service and these processes are all above board.

Digital Data;

This trend is still widely used but not with the increase in use of mobile devices globally. Digital Data has become the preferred use of displaying data. How this information is used and the potential of this information being misused. Issues regarding digital use to be an “IT issue” but this is now no longer the case. Data Breaches and leaks have become more and more common due to lack of cyber protections in place. Lack of knowledge for one about cyber security is one factor that causes these issues.

Data Protection

A Data Protection strategy for digital and paper documents must be implemented throughout a business. There are governing bodies in place and bodies localised to your business and is worth knowing what procedures are in place for data protection. In Ireland the Data Protection Commissioner is a governing body directive from the EU.

“The office of the Data Protection Commissioner is established under the 1988 Data Protection Act.  The Data Protection Amendment Act, 2003, updated the legislation, implementing the provisions of EU Directive 95/46. The Acts set out the general principle that individuals should be in a position to control how data relating to them is used.”

The DPC provides guidelines for data protection and methods. If these measures are in place before a data breach occurs, it can save face for a business reputation and wont be scrutinised for not having these measurements in place to begin with.

The DPC site offers guidelines regarding Data Security both physically and digitally and the guidelines can be viewed here.

https://www.dataprotection.ie/docs/Guidance-Material-Menu-Page/m/219.htm

An Industrial Paper Shredding Service will provide you with credible Data Protection service please visit our site for more information:

Email us at info@securityinshredding.com

Minister says Data Protection Commissioner is independent

Posted on by
Reply

Data Protection CommissionerRTE News 28th January 2016

The Minister for European Affairs and Data Protection has defended the Office of the Data Protection Commissioner, saying it is completely independent of government.

Minister Dara Murphy was responding to the news that Digital Rights Ireland is to take legal action against the Government, challenging whether the office is truly an independent data authority under EU law.

DRI says a series of judgments from the EU’s top court have stressed the critical importance of a truly independent data protection authority.

However, DRI says it will claim in court that Ireland has failed to properly implement EU data protection law or follow the requirements of the Charter of Fundamental Rights by failing to ensure the Irish ODPC is genuinely independent from government.

Speaking to RTÉ News, Mr Murphy said he was aware of the impending case, but said it would be up to the courts to decide.

He added that the ODPC and its functions are completely independent of government.

He acknowledged that the ODPC is government funded, but said apart from that it is like many other agencies in the state that are independent of government.

Mr Murphy also defended the public sector’s attitude to data protection, following criticism earlier today from Data Protection Commissioner, Helen Dixon.

The minister said improvements in compliance with data protection rules are needed across society including Government departments and the public sector generally.

But he said the new European General Data Protection Regulation will change and strengthen data protection rules.

He added he had recently brought local authorities and semi-state companies together to impress upon them the strong obligations they have in this area.

He said public bodies are engaging, although that doesn’t mean there is not more work to be done in the area.

On the controversy around the Garda Síochána Ombudsman Commission’s accessing of journalists phone records, Mr Murphy said the Minister for Justice was right to commission an investigation into it, as it is absolutely essential that citizens have confidence in any state agency that processes or handles their data.

Commissioner critical of compliance levels

Earlier, Ms Dixon criticised the level of compliance with data protection laws in the public sector.

Ms Dixon released a statement setting out priorities for data protection rights and protocol in 2016 to mark the tenth annual Data Protection Day.

In particular, she has called for improvements to the legislative process to ensure greater deliberation and scrutiny of issues that interfere with the fundamental right to data protection.

The commissioner acknowledged data protection is not an absolute right and in certain circumstances, must yield to other competing rights.

However, she also stated that if a public body is going to interfere with data protection rights, it must generally be provided for by law, be proportionate, necessary and made in the general interest or need to protect others rights.

Ms Dixon concludes that consideration must be given to all of these matters when drafting legislation.

 

Her pointed comments come as her office prepares to begin an audit of contentious powers used by several public bodies, including An Garda Síochána and GSOC, to access telephone records and other electronic messages.

Paper Shredding Dublin

Posted on by
Reply

This brief blog article will focus upon the topic of Paper Shredding Dublin and will share some insight into unacceptable high risk practices with some links to helpful guidance websites to help with the decision making when establishing a document shredding protocol and digital data destruction protocol within your Organisation and households in Ireland.

Data Protection and the ethical procedures for the disposal of end of life data is essential for all in today’s ever evolving data world. Hard-Drives, CD’s, Data Cartridges and Paper files are the main methods for experiencing a damaging and painful data breach.

Protecting your Physical Data and in turn your Personal Identity is vital for all today and a data destruction Dublin service is the most suitable and compliant method for Organisations operating in Ireland and us the Irish citizens to Confidential Shredding, Data Protection, Data Protection FInes, Data protection Penalties, Secure Shredding, Data Destrcution, Complianceassert the protection of our information.

 

High risk practices;

 

  1. Following the guidance of other Organisations both in the Private Sector and Public Sector;

With the advances in data reconstruction technology, increasing levels of data crime, extreme forces for lower costs in addition to contradicting and mind boggling information, simply looking at an alternative Organisation (Private &/or Public) to mimic their procedures and practices is not an appropriate method to establish your own data procedures and practices for managing sensitive paper documents. As we in Ireland are a member of The European Union we are subject to European Legislation in addition to Irish Data Protection Legislation. This point also raises the level of risk of data protection when looking at other Organisations as there have been many different views upon the legislation and the application of it in our Country.

During the Thanks Giving period in The US an extremely serious Data Breach occurred where paper documents containing personal information were found dumped in a recycling centre. These documents were traced back to a hospital which may now be in line to face serious fines and penalties. The affected parties were contacting and apologies were given on behalf of the hospital.

In November of 2015 in our own home Country of Ireland we have seen a data breach occur in one of our Hospitals which in turn personal patient records were found in a recycling bin on the street outside the Hospital.

I want to highlight these two examples as it is important to note that the protection of personal data is a global issue and it is not to be underestimated. These examples also highlight that Companies in the Dublin Region that wish to establish a Dublin Paper Shredding Service and look for guidance from Organisations either in the Private or Public Sectors may lead to data breaches which in turn may lead to negligence penalty enforcement’s. Independent research from reputable information sources that has the protection of personal sensitive data as their number one concern is the most appropriate method for establishing your data protection procedures.

 

2. Allowing you Waste Management firm to manage your end of life personal sensitive data;

This point is of serious concern for all Organisations and citizens of Ireland to ensure the protection of their personal sensitive paper data. This article is not to negatively market waste operating firms as many of them do an amazing and admirable job at protecting our environment, producing waste fuel for export to incinerators, collecting household waste, running recycling centers, separating and segregating waste materials and selling waste commodities to the recycling industry for maximum revenues not to mention the hundreds of people that are employed through waste operators, they truly are appreciated.            When it comes to personal sensitive data and the appropriate disposal of that data there are specialist firms within the market that are subject to additional standards, certifications and best practices which may not be the case for many waste operators who do not have confidential shredding as their primary business case. There is also an industry representative body for these professional specialist firms to ensure industry best practices. If you are specialist data destruction firm (Paper Shredding Firm) you are a Data Processor and recognised as a data processor under legislation. When you are a data processor you are subject to additional legislation from both Ireland and Europe and you are accountable for breaches of the legislation.                       If you are a waste operator managing waste services you may not be recognised as a data processor but as a materials processor. With this point, if a data breach occurs the Data Processor liability under data protection legislation may not be valid and there may not be accountability in the case of your data breach.

3. Empowering staff with the responsibility to destroy your end of life data;

When deciding whether or not to give staff the responsibility of destroying their end of life data or hiring in temporary or work experience staff it is important to take into account the following factors

  1. Have you provided adequate training for staff
  2. Have you included their responsibilities in their employment contracts
  3. Have you received an audit trail for your material
  4. Do you have proof of destruction
  5. Do you have proof of recycling
  6. Have you destroyed the data to the appropriate shred size
  7. Have you completed a cost benefit analysis on the activity
  8. Are staff being taken away from other activities
  9. Have you singed confidentiality agreements
  10. Have you conducted background checks upon staff

The risks when destroying data outweigh the benefits of completing the process in-house. When dealing with risk it is impossible to eliminate the risk however it is possible to minimise the risk levels and with this in mind it is important to look for a professional specialist shredding firms to manage your destruction requirements and ensure compliance to save you from possible data breaches.

 

If you require any further information to better help equip yourself from experiencing a damaging data breach please do not hesitate to contact the Security in Shredding Team for friendly helpful guidance with no obligations. You may also want to visit the following sites;

  1. https://www.securityinshredding.com/contact-us.php
  2. https://www.dataprotection.ie/viewdoc.asp?DocID=4
  3. https://www.dataprotection.ie/viewdoc.asp?fn=/documents/register/display.asp?ID=14124%2FA
  4. https://www.dataprotection.ie/ViewDoc.asp?fn=/documents/guidance/Guide_Data_Contollers.htm&CatID=90&m=y
  5. https://www.dataprotection.ie/ViewDoc.asp?fn=/documents/responsibilities/3bi.htm&CatID=53&m=y
  6. https://www.isia.ie/all-security-mobile-shredding
  7. https://www.din.de/en/getting-involved/standards-committees/nam/european-committees/wdc-beuth:din21:113162714