With the average data breach costing UK firms around £1.9m annually (findings from research by IT security firm Symantec), and the new European data privacy framework asking for greater commitment from businesses on the way they handle data security, the British Security Industry Association’s (BSIA) Information Destruction section is urging end users to understand how compliance with relevant industry standards can actively guarantee an improved level of protection against data breaches.
Anthony Pearlgood, chairman of the BSIA’s Information Destruction section, says: “With the wide range of products and services available within the Information Destruction industry, establishing whether a security provider complies to the relevant National and European standards should be an important part of the procurement process for companies of all sizes, to ensure the quality and reliability of the suppliers selected. Unfortunately, however, this is not always the case, as standards can be technical in nature, and end-users may sometimes fail to fully understand their scope and importance.”
To overcome this issue and further highlight the benefits of these documents, the BSIA section that deals with the destruction of confidential waste and material has launched a one-page informational leaflet aimed at end users who are considering procuring information destruction services. This handy document provides the points of consideration of EN15713:2009, the European standard for the sector. The standard provides organisations with recommendations for the management and control of collection, transportation, destruction of confidential material and recycling to ensure such material is disposed of securely and safely.
“The BSIA’s Information Destruction section played an active part in the development of the EN15713 standard, to provide real specifications on how the processes should be handled within our industry. The sensitive nature of the documents and materials we deal with in fact require tight procedures in order to ensure maximum security for your information. This is why understanding the implications of the standards is important in order to make informed procurement decisions.”
Research carried out last year by the BSIA revealed that only 50 per cent of facilities managers who have taken the step to outsource data disposal knew whether their provider actually complied with the European Standard EN15713. Anthony said: “This is concerning, as we believe that this should be one of the first questions asked of any secure waste disposal business by a prospective customer.”
To download a copy of the EN15713 document produced by the BSIA’s Information Destruction section, visit the BSIA’s publications page www.bsia.co.uk/bsia-publication-downloads and search for form 141.
The section is also keen on sharing best practice amongst the security industry, and has established an annual Information Destruction Conference and Exhibition for members and non BSIA members. The 2012’s edition of this exclusive event will take place on May 30, at the National Motorcycle Museum in Birmingham. For information and bookings, visit www.bsia.co.uk/information-destruction.
