Why Does NAID AAA Certification Matter?

05
Jun
2019
392 Views

Security FAQ for Finding a Document Management Company

The 2018 Cost of a Data Breach Study from IBM Security reported that the average cost, globally, for each lost or stolen confidential record is $148 per record. That comes out to a global average cost of $3.86 million per data breach. Over the last several decades, the need for secure data destruction has grown dramatically, both to satisfy client privacy demands on their confidential information and to meet increasingly stringent regulatory requirements. When searching for document management, shredding, or scanning companies, it may be hard to distinguish one company from another. After all, everyone says they are “the best” or “world- class” solutions. If your company handles secure information, it is not enough to simply hire the lowest bidder. You must do your own due diligence as part of your duty to your clients and their confidential information. How do you know who to trust?

SRS Chief Problem Solver Christopher Jones discusses our approach to security in this brief video.

In addition, we’ve put together answers to some of our clients’ most frequently asked questions to help assist you in your due diligence process:

How do I know my documents are secure?

At Secure Records Solutions, we don’t just say we’re secure.  We have a NAID AAA Certification to back it up. SRS also carries the Georgia Bureau of Investigation (GBI)’s GCIC Accreditation, a partnership requirement for any vendors working with law enforcement and judicial organizations. 

What does NAID AAA Certification mean? 

The National Association for Information Destruction, Inc. (“NAID”) is the standards setting body for the information destruction industry. It is the only consumer watchdog association that audits the qualifications of data destruction providers. NAID has developed the AAA Certification Program, a voluntary program for NAID member companies. The AAA accreditation process establishes testing and auditing requirements for clients’ protection.

How does a company get NAID AAA Certified?

The NAID AAA Certification verifies the qualifications of certified information destruction providers through a comprehensive scheduled and surprise, unannounced audit program. NAID reviews more than 20 areas of operational and security requirements including particle size, employee screening and training, transport, access control, video surveillance, procedures and record keeping. Companies must renew their certification each year. If a company has multiple locations, each location must pass the audit to be certified. NAID members who receive certification must specify the location certified in company literature when referencing the NAID Certification program.

If I choose offsite shredding instead of onsite, will my documents still be secure? 

Yes, SRS is NAID AAA certified in both plant-based and mobile shredding. SRS’s custodial services – records storage, online backup and scanning/images – are all certified as well.

Does your company meet HIPAA standards?

A NAID AAA Certification covers many of the Health Insurance Portability and Accountability Act (HIPAA) patient privacy standards. In addition, we undergo regular audits and staff training meet HIPAA regulatory standards.

What other regulatory groups are covered with a NAID AAA Certification?

A NAID AAA Certification also meets the regulatory requirements for the following:

  • FACTA (Fair and Accurate Credit Transactions Act)
  • Payment Card Industry Data Security Standards (PCI-DSS).
  • FTC Financial Services Modernization Act
  • Securities and Exchange Commission Reg S-P

How can I find out if my current provider is NAID AAA Certified?

It’s simple. The NAID website offers a tool to find either a specific vendor or all vendors within a geographic area. Simply filter by “NAID AAA Certified Members” to find accredited providers in your area. You can also look for this seal on any provider’s website.  Remember, for a provider with multiple locations, each location must be individually certified.

Please let us know if we can answer any other questions as you conduct your own due diligence.

LEAVE A COMMENT

Our Latest Consulting Insights

EMR, Electronic Medical Record, EHR, Electronic Health Record, HIPAA, Scanning Medical Records, Thomasville, Tallahassee, Albany, Valdosta, Tifton, Dothan, Jacksonville, Atlanta, AHIMA, GHIMA, FHIMA

HomeTown Health 2019 Executive Leadership Program

Christopher P. Jones, Secure Records Solutions Partner, among 12 HomeTown Health Graduates of 2019 Executive Leadership Program Twelve individuals from Georgia rural hospitals and supporting organizations graduated from the HomeTown Health 2019 Executive Leadership Program. This group of individuals was recognized at the graduation and […]

Read More

How To Solve Your Office’s Space Issue

Does your office have a space issue? Hint: It’s actually a management issue! Recently, a potential client called me up and said they needed SRS to help them immediately. It was urgent – the practice’s office was literally running out of room. We, of course, […]

Read More

Which is the Best Shredding Solution for Your Business?

Secure Records Solutions currently offers two shredding solutions: mobile (onsite) and offsite.  Which is the best shredding solution for your business? In this blog, we detail the process for each method, and share the differences and similarities of each to help you choose which is […]

Read More

Secure Records Solutions Merges with ShredEZ of Adel, GA

As of October 2019, Secure Records Solutions has merged with ShredEZ. Secure Records Solutions is a family owned and operated document management company headquartered in Thomasville, Georgia. Founded in 2003, SRS is Southwest Georgia’s premier shredding company, known for our legendary client experience, highly accredited […]

Read More

How Can Your Office Reduce Its Paper Waste?

Did you know that the average office employee uses about 10,000 sheets of paper each year? If your office has 25 employees, that means your office goes through 250,000 pieces of paper annually.  Staggering, right?  If you use a desktop shredder and attempt to recycle […]

Read More

How Does the HIPAA Privacy Rule Apply to Paper Medical Records?

When the HIPAA Privacy Rule was established in 2003, it was intended to deal with privacy surrounding digital records; therefore, specific language surrounding the management of paper records is vague. While most practitioners are moving toward electronic records, many historical records remain in hard copy […]

Read More

phishing

Five Ways to Detect a Phishing Email Scam

Gone Phishing? It could lead to disastrous results. According to Symantec’s 2018 Internet Security Threat Report (ISTR), the average user receives 16 malicious spam emails or phishing attempts per month. Over the course of the year, that’s nearly 200 chances to accidentally give away a password, […]

Read More

scanning

What benefits does outsourced document scanning offer?

To Scan or not to scan, that is the question. For many rural hospitals, financial institutions, or businesses in highly-regulated industries, “just scan everything” is often the answer. While it’s seemingly the obvious solution, it’s never the easiest, and, in many times, it’s the most […]

Read More

documents

5 ways to create value with your documents

Despite the oppressive heat here in South Georgia, school is back in session. People are shaking off the lazy, hazy, crazy days of summer and jumping back into order and routine. There’s no better time to look at your document management routine and ensure that […]

Read More

Why do most document management software projects fail?

We hear it all the time: “We’re paperless.” “We have the latest, greatest software money can buy.” “We are cloud-based.” However, when we walk through the office, we see papers being shuffled back and forth and hard copy files being referenced. And then we realize, […]

Read More

How Can A Rural Hospital Reduce Risk & Expense?

The average rural hospital has an average 3,000 boxes of paper records even though they implemented EMR software a decade ago. Ninety-five percent of hard copy records will never be accessed, so scanning everything is an expensive, inefficient solution. Labor associated with managing medical records […]

Read More