2. Secure Shredding and GDPR: What You Need to Know
It's not secure until it's shredded!
Every organisation has a legal responsibility to safeguard sensitive information and dispose of confidential material securely. The organisation is also responsible for any confidential material that's taken outside its premises by any of its employees. This includes both hard copy documents and anything that can be viewed on a computer, laptop or mobile device.
Despite increased awareness of identity fraud over the last few years, the crime is still growing at an alarming rate in the UK. And, because we deal with so many pieces of information on a daily basis, we’re all at risk – individuals and organisations alike.
A discarded bank statement, or a snippet of payroll information or a crumpled customer proposal could be all a criminal needs to cause irreparable damage to you and your business.
Being careless is costly
- 51% believe that hybrid working may have increased the amount of sensitive information being lost or in breach of GDPR rules
- 46% have seen people leave confidential work-related documents unattended
- One in four say they do not follow their organisations GDPR policy, do not know of one, or cannot remember the details.
- 70% of all respondents have either taken printed work documents home, printed documents at home, or both.
- Of these, 47% say they do not shred these after finishing with them, instead:
- 15% tear them a few times and throw them in the bin
- 13% throw them in the recycling bin as they are
- 13% tear them a few times and throw them in the recycling bin
- 6% throw them in the bin as they are
Shredding is the best way to securely destroy confidential documents for the protection of sensitive business information and personal identities.
Guidance for better shredding practices:
Secure shredding is key to keeping confidential paperwork out of the wrong hands and reducing organisational exposure to data breaches. Using a shredder to safely destroy confidential paperwork should be part of our daily routine, wherever we work.
- Don’t assume everyone understands GDPR. Educate all employees on GDPR requirements, personal data handling and the six principles of data protection. This training should be given to all new starters, whenever legislation is updated, and as part of regular data security refresher sessions.
- Lock confidential documents away when these are not in use, and never leave them lying around unattended at home or in the office.
- Shred all sensitive paperwork before recycling or disposing of it, ideally without needing to take the risk of transporting it from home to office, or vice versa.
- Give all employees easy access to a secure shredder at home and at work.
Discover the world’s toughest shredders for commercial and personal use today.