Home    »  Data Privacy   »   You Are Responsible For Data Privacy & Protection Obligation

You Are Responsible For Data Privacy & Protection Obligation

Compliance Obligation & Penalties SOX,HIPAA, GLBA, JP/PA, EU-DPA, IS027001, IT-Act, PCi-DSS, /SAE3402-3416.

Whether an organization is disposing storage assets by donating to a charity or through a responsible recycler or while returning of leased IT Assets; it has an obligation to ensure that no incident of data breach occurs. The obligations are under various international laws and company policies to demonstrate strict compliance. In an event of data compromise the organization and its officers have to face severe financial penalties and risk imprisonment.

An organization should also exercise care when the IT assets are REASSIGNED INTERNALLY on account of a transfer, resignation, end of project etc. This becomes particularly more important when the same level of confidentiality is NOT maintained in various departments.

US – Compliance Requirement

It is a standard compliance requirement for organizations to completely erase data beyond the scope of data recovery from all IT assets before recycling or reassignment. In United States for public companies SOX and other regulatory directives exist which require complete and secure data erasure.

INDIA – Data Protection & Data Privacy

Under Section 43A of the Indian Information Technology Act, 2000, a body corporate who is possessing, dealing or handling any sensitive personal data or information, and is negligent in implementing & maintaining reasonable security practices resulting in wrongful loss or wrongful gain to any person, then such body corporate may be held liable to pay damages to the person so affected.

Additional implications include high costs of lawsuit, loss of reputation & customer trust that may cause permanent or long-term impact on sustainability of an organization


About The Author

Leave a Reply

Your email address will not be published. Required fields are marked *

Search Category

Featured Blogs

July 22, 2021
NIST-Tested & Approved Data Erasure Software
Learn More
June 14, 2021
Data Security is Mostly Overlooked at the End-of-Life of IT Assets
Learn More
May 4, 2021
Top 6 Data Destruction Best Practices To Prevent Data Breach
Learn More
April 27, 2021
BitRaser® Drive Eraser Bags Gold in Cybersecurity Excellence Awards 2021
Learn More
December 16, 2020
What is the Difference between Deletion and Data Erasure?
Learn More

Latest Releases

June 1, 2021
BitRaser Drive Eraser Released
Learn More
June 1, 2021
BitRaser Admin Console Released
Learn More
June 1, 2021
BitRaser Mobile Eraser and Diagnostics Released
Learn More