Compliance
Industry Compliance
FINANCIAL, ACCOUNTING, CPA

Compliance with the Safe Guarding Provisions of GLB is simple, as is the disposal by shredding of files and records that contain Non-Public Information (NPI) of the financial nature of your clients’.

There is no additional cost to you in order to comply with the provision of GLB. The two issues of compliance that you must deal with are to do due diligence in choosing a reliable vendor for the disposal of NPI by shredding and to give written permission to the vendor to remove NPI for the sole purpose of disposal by shredding. A-1 would be in violation of certain provisions of GLB if we did not receive written permission from the generator of NPI to posses such information for the sole purpose of disposal by shredding.

LAW PROFESSIONALS COMPLIANCE

Attorneys engaged in the financial activities of their clients fall under the mandated provisions of the Gramm-Leach Bliley Act. If your practice includes real estate closing, financial planning, estate planning or you represent a client in any financial area, you fall under the guidelines.

The American Bar Association filed an action in the Federal District Court, asking the Court to exempt Attorneys from Title V of the GLB Act. The action is pending and no quick resolution is in sight. Compliance with the Safe Guarding Provisions of GLB is simple, as is the disposal by shredding of files and records that contain Non-Public Information (NPI) of the financial nature of your clients’.

There is no additional cost to you in order to comply with the provision of GLB. A-1’s destruction process, prior to the enactment of GLB, was based on the Department of Defense guidelines for the destruction of secret and sensitive documents. The two issues of compliance that you must deal with are to do due diligence in choosing a reliable vendor for the disposal of NPI by shredding and to give written permission to the vendor to remove NPI for the sole purpose of disposal by shredding. A-1 would be in violation of certain provisions of GLB if we did not receive written permission from the generator of NPI to posses such information for the sole purpose of disposal by shredding.

Attorneys have another issue to deal with on a Federal level and that is the enactment of the Health Insurance Portability and Accountability Act, commonly known as HIPAA. The Act protects the privacy of protected health information (PHI). If your files and records contain any medical records of your client’s you must comply with the HIPAA provisions for safeguarding and disposal by shredding of these records.

You are required to enter into a Business Associates Agreement with your document destruction vendor. For the same reasons outlined above, there are no additional costs for your compliance with the HIPAA provisions

MEDICAL PROFESSIONALS COMPLIANCE

Doctors and Hospitals are the particular targets of the Health Insurance Portability and Accountability Act, commonly known as HIPAA. The Act protects the privacy of protected health information (PHI). Your files and records contain medical records of your clients and therefore you must comply with the HIPAA provisions for safeguarding and disposal by shredding of these records.

The two issues that you should deal with is to do due diligence in choosing a reliable vendor for the disposal of PHI by shredding and to give written permission to the vendor to remove PHI for the sole purpose of disposal by shredding. (Referred to as a ”Business Associates Agreement”) A-1 would be in violation of certain provisions of HIPAA if we did not receive written permission from the generator of PHI to posses such information for the sole purpose of disposal by shredding.

Laws & Acts Compliance
HIPAA HEALTH INSURANCE PORTABILITY & ACCOUNTABILITY ACT

HIPAA outlines standards and requirements developed by the Department of Health and Human Services for the maintenance and transmission of health information that identifies individual patients. It applies to any business that has access to, or, is processing individually identifiable health information. All individually identifiable healthcare information processed by any business entity must be proactively safeguarded.

GLB: GRAMM-LEACH-BLILEY ACT

The Gramm-Leach-Bliley Act places significant restrictions on the use of customer information by those in the financial industry. Applicable to companies that are engaged in financial activities to ensure the security and confidentially of their customer’s non-public information, such as, Social Security numbers, Account numbers, Credit Card numbers, applications, etc.

COMPLIANCE ALERT – PLEASE READ

Are you HIPAA compliant?

That is the question plaguing many health care organizations across the country. At the federal level, information destruction requirements in the health care field are part of the Health Insurance Portability and Accountability Act of 1996 (HIPAA). Although the centerpiece of the act focused on uses and disclosures of health information, parts of the legislation also establish national standards for the privacy, security and electronic transmission of health information. Insurance companies, hospitals, and physician practices are obligated to protect Individually identifiable health information, which has been interpreted to mean any records that include a patient’s name, address or Social Security number. The privacy protection portion of HIPAA took effect on April 14 of 2003, yet many organizations still struggle to address its requirements. Now health care organizations are facing another challenge on the horizon: Compliance with the April 21, 2005 HIPAA security requirements.

While HIPAA doesn’t dictate how to dispose of the information it reinforces the mandate that covered entities deploy safeguards to prevent improper disclosures of protected health information (PHI). “Examples of appropriate safeguards include requiring that documents containing PHI be shredded prior to disposal,” the preamble to the privacy regulation states (65 FR 82562).

CALL, EMAIL, or VISIT US

1930 Route 70
Suite M 65
Cherry Hill, NJ 08003

Phone: 856-424-8393

    Your Name (required)

    Your Email (required)

    Your Message

    Go to Top