What are the SOX Data Destruction requirements?
To stay compliant, organizations that are covered by SOX must establish policies that keep all financial information secure and unable to be obtained by unauthorized sources. This requires that hard drives and other electronic storage media on IT assets that are slated for decommissioning must be erased so that none of the data contained on the media can be recovered.
Who must be SOX compliant?
The law applies to all domestic public companies, as well as non-public companies with publicly traded debt securities. Some sections of Sarbanes-Oxley apply to companies that do business with publicly traded companies, even if they aren’t publicly traded themselves. Subsidiaries of covered public companies can also be held liable for retaliating against a whistleblower under certain circumstances.
How can e-End keep an organization in compliance?
In addition to being NAID AAA Certified for sanitizing data on all electronic and non-paper media (including hard drives, flash drives and cell phones), we also adhere to NSA and NIST 800-88R1 guidelines for data destruction to ensure you’ll remain compliant with the SOX rules.
After our services have been completed, you’ll be issued a Certificate of Certified Data Sanitization and Certificate of Recycling for your records.
For organizations with data for destruction that, due to security reasons, cannot leave your facility, we can perform all data sanitization services onsite at your office or facility with no disruption.
Contact us today to learn more about how we can keep you compliant with FACTA and other regulations.
Computer Recycling Drop Off Location:
Monday – Friday: 9AM-4PM
Saturday - Sunday: Closed
7118 Geoffrey Way Unit E
Frederick, MD 21704
Phone: (240) 529-1010