From FACTA to FIPA: Data Destruction Directives Applicable to St. Petersburg Businesses
Your business collects information about employees and customers alike. Some of it is quite sensitive: banking information, proprietary information, sensitive personally identifiable information (PII) relevant to your industry, etc. While you no doubt keep a lot of it in electronic form, if you’re like most businesses in St. Petersburg, you also still have a lot of sensitive data in hardcopy form, too.
PII includes but isn’t limited to:
- Account numbers
- Banking information
- Identification numbers (Social Security, driver’s license, military ID, passport, etc.)
- Contact information
- Medical and health insurance information
PII is basically an individual’s specific identifying information. As a business owner, you want to be a good steward of sensitive information and dispose of it properly as needed. What are data destruction directives relevant to your St. Petersburg business?
Two main data destructive directives relevant to St. Petersburg businesses are the Fair and Accurate Credit Transaction Act (FACTA) and the Florida Information Protection Act (FIPA). However, there are some other laws you should be aware of, too.
How Does FACTA Affect My St. Petersburg Business?
Signed into federal law in 2003, FACTA is intended to counter consumer fraud and other similar crimes, including identity theft. Under FACTA, businesses are responsible for taking reasonable measures to prevent anyone unauthorized from accessing or using consumer information, including PII.
FACTA means that if your business has sensitive PII about your customers—or if you’ve compiled such information—you must dispose of it properly.
Shredding sensitive PII documents until they cannot be read or reconstructed enables you to meet the FACTA data destruction standard.
What Should I Know about FIPA for My St. Petersburg Business?
Signed into Florida law in 2014, FIPA applies to businesses and government entities storing PII on Florida residents (customers, employees, etc.). FIPA stipulates businesses must protect PII, and it governs what to do about a data breach.
What Other Laws or Regulations Are Relevant?
Here are other Florida laws beyond FIPA you should bear in mind:
- Gramm-Leach-Bliley Act
- Florida Statute 501.171
- Health Insurance Portability and Accessibility Act
- Florida Admin Code Rule 1B-24
These laws govern various aspects of storing, managing, sharing, breaching, and destroying different types of PII.
Data Disposal Via Shredding and Destruction
If you have sensitive data and documents to destroy, consider a data disposal and shredding service like ShredQuick. You can contract for a variety of services to ensure your business stays compliant with federal and state laws protecting PII.
Request a Quote
Complete the Form for a Guaranteed Shredding Quote in 5 Minutes or Less