Secure Records Solutions is proud to announce that we have recently received our Privacy + Certification. This is in addition to the NAID AAA Certification that SRS has had since 2013. SRS is the only independent records management facility to maintain both the Privacy + and NAID AAA certifications within a 200-mile radius of our Thomasville, GA headquarters.
As some of our clients may not be familiar with the Privacy + certification, we tackle the seven most Frequently Asked Questions below.
What is the difference between Privacy + and NAID AAA?
Of course the heartbeat of the NAID AAA Certification is for secure data destruction, while PRISM Privacy+ certification is focused on secure records management
What are similarities between NAID AAA & PRISM Privacy +?
Both certifications are considered the highest certification possible for their respective functions. In addition, both are now under the iSIGMA umbrella following the merger of NAID with PRISM in 2018. In fact, Chief Problem Solver Christopher Jones recently completed his term as President of iSIGMA and remains on the board of directors. Also, both certifications are subject to unannounced audits at any time.
How does a company receive a Privacy + Certification?
SRS recently passed a stringent audit that reviewed 10 different areas of the business, including organization and management control, information security policy, human resources, vendor management, environmental controls, physical access controls, logical access controls, electronic access, and network security.
How will it impact me as a client?
This third-party verification enables you to fulfill your regulatory requirement of due diligence for the safety and storage of sensitive information. This provides an additional layer of security and protection to you.
What regulatory bodies recognize Privacy +?
The Privacy + certification meets or exceeds requirements for the following organizations:
- Gramm-Leach-Bliley Act (GLBA)
- Sarbanes-Oxley Act (SOX)
- Federal Trade Commission (FTC) “Red Flags Rules“
- American Institute of Certified Public Accountants (AICPA) SSAE No. 16 Type 1
- Family Educational Rights and Privacy Act (FERPA)
- Fair and Accurate Credit Transaction Act (FACTA)
- Health Insurance Portability and Accountability Act (HIPAA)
How can I find out what other vendors have certifications?
Visit the iSIGMA’s member directory on its website and select Privacy + certifications. It will also show you if a provider has a NAID AAA as well. Currently, SRS is the only independent provider within a 200-mile radius of our Thomasville, GA service area to have both a NAID AAA and a Prism Privacy + certification.
Why does SRS need both the NAID AAA certification and the Prism Privacy + certification?
At SRS, our tagline is “always improving,” and we really mean it! SRS offers a full suite of services, ranging from shredding and storage to indexing and scanning. We want our clients to know that we have the industry’s highest certification for all our services offered.