SEAM ensures that every step of the ITAD process is 100% auditable. Whether your assets are resold, recycled or reused, we account for everything from the secure recovery process to asset tracking and reporting, to final disposition. Our accessible online reporting provides documented proof for all of your auditing needs.
SEAM helps customers comply with HIPAA and meet the security safeguards set out in HITECH with certified data destruction shredding services and IT asset management from the point of collection through final disposition. We give you the option to watch the shredding process before equipment even leaves your location, and provide you with a Certificate of Destruction and Recycling showing an audit trail for every hard drive or data bearing device shredded.
- HIPAA: The Health Insurance Portability and Accountability Act (HIPAA), originally enacted in August of 1996, governs the security and privacy of healthcare data and applies to any health care provider considered a Covered Entity. Ranging from hospitals, medical centers and dentists, to insurance, billing or collection agencies, all Covered Entities, regardless of size, must “maintain reasonable and appropriate, technical, and physical safeguards to prevent intentional or unintentional use or disclosure of protected health information.” Essentially, this act ensures that Protected Health Information (PHI) is protected and remains private. Noncompliance can be devastating, from severe fines and penalties to litigation and brand damage. Lack of sufficient controls for devices and media is one of the top 5 most common sources of breaches, according to Marylou King (former official with the U.S. Department of Health and Human Services Office of General Counsel).
- Omnibus Rule |HITECH | Security Rule: The HIPAA Omnibus Rule was issued in January 2013 and significantly strengthened the privacy and security rules to protect individual’s PHI and the integrity of electronic PHI. This rule implemented many of the changes required by the Health Information Technology for Economic and Clinical Health Act (HITECH) which was enacted as part of the American Recovery and Reinvestment Act of 2009 (Pub.L. 111–5). Covered Entities, Business Associates and subcontractors must now fully comply with the HIPAA Security Rule, which specifies guidelines for rendering PHI unusable, unreadable or undecipherable. Fines for noncompliance are expected to continue increasing along with prosecution. Choose your business partner wisely: Health care providers are likely to face liability for conduct by business partners and sub-contractors. It is estimated that business partners are responsible for more than 60% of HIPAA violations. Avoid choosing the wrong partner by working with SEAM.
Reasonable steps, due diligence and precautions taken by any company collecting confidential data will keep you in compliance. Let us help.
- Legislative Compliance: We take corporate compliance seriously. SEAM’s certified process follows strict security protocols to ensure data is protected. Customers are provided with detailed reports and Certificates of Destruction, made readily available 24/7 via the customer portal. This information can be used for audits and compliance with various legislative regulations that require businesses to properly handle, archive and destroy electronic records. Using a partner with experience and knowledge eliminates your risks and ensures compliance.
- Crisis Prevention: By using SEAM’s services to handle off-network equipment, customers are preventing costly disasters such as data breaches or environmental catastrophes. Using SEAM as an insurance plan mitigates these risks and helps customers avoid spending huge amounts on the investigation, communication, and ultimate customer loss that result from these issues.
- Corporate Social Responsibility and Sustainability Reporting: All of SEAM’s certified processes are tracked in our operational management system and analytic reports are made available to customers through our online portal. Customers use this reporting service to communicate their CSR initiatives and meet various environmental requirements such as LEED Certification.
- Certified Data Destruction: SEAM adheres to the current recognized data destruction standard, NIST Special Publication 800-88 (Revision 1), which meets and exceeds the US Department of Defense standards. With well documented and third party verified physical destruction and sanitization procedures, we ensure all data is completely destroyed once it enters our facility. Customers can rest assured their data security policies are in compliance and all sensitive data is safely secured with SEAM.