Does your business violate the FACTA disposal rule?


The FACTA Disposal Rule is designed to prevent the unauthorized access to – or use of – information in a consumer report. Is your business compliant?

When people think of business regulation, the Securities and Exchange Commission or HIPAA may come to mind first. But just because you are not in the healthcare industries, that does not mean your business is off the hook when it comes to secure destruction of confidential information. On June 1, 2005, The Federal Trade Commission (FTC) enacted The Disposal Rule which requires businesses to take appropriate measures to dispose of sensitive information derived from consumer reports. Any business (or individual) who uses a consumer report for a business purpose is subject to the requirements of the Disposal Rule. The FTC also encourages businesses who deal with any records containing a consumer’s personal or financial information to take similar protective measures. Businesses who are subjected to the FACTA Disposal Rule include, but are not limited to, the following:

  • consumer reporting companies,
  • lenders,
  • insurance companies,
  • landlords,
  • government agencies,
  • automotive dealers,
  • attorneys, and
  • debt collectors.

Businesses of all sizes, as well as individuals who may pull consumer reports on prospective home employees such as nannies or care givers, are included. According to the FTC, “The Fair Credit Reporting Act defines the term consumer report to include information obtained from a consumer reporting company that is used – or expected to be used – in establishing a consumer’s eligibility for credit, employment, or insurance, among other purposes.”

The Disposal Rule is designed to prevent the unauthorized access to – or use of – information in a consumer report. The way in which this confidential information is destroyed is more flexible than some of the other governing bodies. The FTC considers burning, pulverizing, or shredding papers and destroying or erasing electronic files or media containing consumer report information so that the information cannot be read or reconstructed. The FTC also allows businesses to conduct due diligence and hire a document destruction contractor to dispose of material specifically identified as consumer report information consistent with the Rule. The FTC states that “Due diligence could include: reviewing an independent audit of a disposal company’s operations and/or its compliance with the Rule; obtaining information about the disposal company from several references; requiring that the disposal company be certified by a recognized trade association; or reviewing and evaluating the disposal company’s information security policies or procedures.”

There are penalties associated with breaking the Disposal Rule range from the thousands for state and federal penalties to millions of dollars in the form of a class action lawsuit (see: Equifax for proof of that!).

SRS helps many businesses stay compliant through our shred program. We provide you a secure shredding container to your office based on your volume needs. Each bin is equipped with a locking system that makes them secure to protect your sensitive files until they are destroyed. Then, on a regularly scheduled basis, typically every 1-4 weeks, one of our friendly, uniformed drivers will come to pick up your shredding. Our shredding process is NAID AAA-certified, meaning it meets  the industry’s most-stringent requirements and is subject to random audits by NAID to ensure compliance.

If you’re reading this and realize that you have files that need to be destroyed in order to become compliant with the Disposal Rule, we also offer one-time purges to destroy lots of documents at once. At SRS, we believe that the cost of a regular shred program is much cheaper than the cost of a breach, not only in terms of dollars, but in terms of your reputation. Please contact us today to find out if we can help your business adhere to the FACTA Disposal Rule.



Our Latest Consulting Insights

Why are Rural Healthcare Providers Under Such Tremendous Pressure?

Despite challenging environment, rural hospitals remain the lifeblood of many communities A love letter to rural hospitals  Rural hospitals provide more than just healthcare to their patients, they provide jobs, economic boosters, recruiting panache for local companies, and an overall sense of belonging in the […]

Read More

Learn which shredding container best suits your business

Do you have the right shredding container for your business? How many times have you walked through an office and inadvertently seen some sensitive information laying on a desk or noticed an associate piling papers in an unsecured cardboard box under their desk? We get […]

Read More

Video: Should my business scan all its records?

Answers with Anna: Should my business scan all its records? Welcome to our new video series, Answers with Anna! Featuring SRS Solutions Creator Anna Ligon, Answers with Anna answers some of the most frequently asked questions we receive. In our first installment, we tackle the question, […]

Read More

Consider Purge and Regular Shred Services for your New Year

Have you made your company’s New Year’s Resolution?  If you’re still thinking about a New Year’s Resolutions for your company, we’ve got a suggestion. Get rid of months’ – or even years’ – worth of old paper by utilizing our one-time shred purge services. Purge […]

Read More

Happy Holidays from Secure Records Solutions

The holiday season is in full swing; it is a time to celebrate and enjoy with family and friends. Before the hustle and bustle of the season gets into full swing, I always like to reflect upon the previous year. It’s been a year full […]

Read More

What’s next in the rural healthcare crisis

Imagine having to drive hours to the nearest hospital to deliver a baby or while experiencing chest pains. For those in rural areas across the country (which, according to the American Hospital Association, is nearly 20 percent of the population), this is a reality. In our […]

Read More

Tifton CEO: Secure Records Solutions Merges with ShredEZ

Tifton CEO recently shared a media release regarding Secure Records Solutions’ merger with ShredEZ out of Adel, Georgia: Tifton CEO reports that Secure Records Solutions (SRS) is a family owned and operated document management company headquartered in Thomasville, Georgia. The merger with ShredEZ, the first […]

Read More

Does your business violate the FACTA disposal rule?

The FACTA Disposal Rule is designed to prevent the unauthorized access to – or use of – information in a consumer report. Is your business compliant? When people think of business regulation, the Securities and Exchange Commission or HIPAA may come to mind first. But […]

Read More

EMR, Electronic Medical Record, EHR, Electronic Health Record, HIPAA, Scanning Medical Records, Thomasville, Tallahassee, Albany, Valdosta, Tifton, Dothan, Jacksonville, Atlanta, AHIMA, GHIMA, FHIMA

HomeTown Health 2019 Executive Leadership Program

Christopher P. Jones, Secure Records Solutions Partner, among 12 HomeTown Health Graduates of 2019 Executive Leadership Program Twelve individuals from Georgia rural hospitals and supporting organizations graduated from the HomeTown Health 2019 Executive Leadership Program. This group of individuals was recognized at the graduation and […]

Read More

How To Solve Your Office’s Space Issue

Does your office have a space issue? Hint: It’s actually a management issue! Recently, a potential client called me up and said they needed SRS to help them immediately. It was urgent – the practice’s office was literally running out of room. We, of course, […]

Read More