WEEE Regulations and Data Protection Act (GDPR) compliance
There may be industry-specific regulations that you have to comply with and further advice can be given on this, but all businesses – regardless of industry sector – need to comply with the WEEE Regulations and the Data Protection Act / GDPR.
The secure disposal of used equipment is also a key control in ISO 27001 (Annex A.11.2.7). In addition to the liability of data-bearing assets around a site, waste and broken equipment should not be stored without the appropriate licenses from SEPA, so contact Glasgow Computer Recycling now to arrange the uplift, secure destruction, and recycling of your redundant IT equipment.
Businesses need to comply with the Waste Electrical and Electronic Equipment (WEEE) Regulations – this means waste IT equipment cannot be incorrectly disposed of and must go through the proper channels.
When disposing of redundant computer and electrical equipment, it is essential that it is passed to a licensed company, and a Waste Transfer Note is issued to provide proof of its legal transfer. This allows companies to fulfill their obligations under WEEE Regulations, and avoid fines and prosecutions levied by the Environment Agency.
Waste disposal is increasingly in the spotlight, and businesses need to make sure they dispose of their equipment legally and responsibly.
UK businesses need to comply with the General Data Protection Regulation (GDPR) for the handling, storing, and disposing of sensitive data. The definitions can be complex, and the Information Commissioner’s Office website (www.ico.org.uk) gives further information.
It can be summarised that any information that identifies a living person is classed as sensitive – this covers much of the information held by most businesses.
A key principle of the GDPR is to guard against loss of data. Since this is most likely to happen when disposing of redundant IT equipment, Glasgow Computer Recycling’s secure disposal services help businesses avoid the increasingly expensive fines that a data breach results in. The advice can be given on how services can help you meet your GDPR obligations.
The Certificates of Destruction that Glasgow Computer Recycling issues serve as proof that data has been securely destroyed.