The Health Insurance Portability and Accountability Act, or HIPAA, was enacted to protect the privacy of an individuals’ health information. While your company may abide by all HIPAA standards in-office, document disposal is an area where many companies remain weak. With fines reaching $10,000-$50,000 per violation, it is well worth taking the extra step to securely dispose of documents that could jeopardize your HIPAA compliance.
What are HIPAA’s Standards for Document Destruction?
The U.S. Department of Health and Human Services (HHS) specifically outlines procedures for company’s dealing with any form of protected health information (PHI). According to the act, if your business deals with customers’ health information they “must implement reasonable safeguards to limit incidental and avoid prohibited uses and disclosures of PHI, including in connection to the disposal of this information.” This rule covers information stored in:
- Electronic media
- Paper documents
This means that if your company has documents with customers’ health information it cannot simply be thrown in dumpsters or containers accessible to the public or unauthorized personnel.
How CDDC Ensures HIPAA Compliance
Document shredding is listed as one of the acceptable ways to dispose of customers’ protected health information. CDDC has verified document shredding methods that:
- Comply with HIPAA’s stringent regulations.
- Set up secure containers and pickup that prevents unauthorized access.
- Shred documents on-site or securely transport them our offsite facility that is also HIPAA compliant.
CDDC also offers e-waste disposal to completely erase all information to prevent your customers’ health information from falling into the wrong hands.
For more information about CDDC’s HIPAA compliant document destruction, call (888) 826-2332 for a free quote.