HIPAA Hard Drive Wipe Requirements: Destruction
Another one of the HIPAA hard drive wipe requirements is known as destruction. Today, many hard drives incorporate solid state drive (SSD) technology. Instead of using magnetic components, Solid-state drives (i.e., flash drives, SD cards, USB drives) rely on an embedded processor, or “brain”, and interconnected flash memory chips that retain data even when no power is present. Degaussing cannot sanitize non-magnetic media such as SSD technology. Since this technology cannot be sanitized through purging, it must be sanitized through destruction. One method of destruction is shredding. Shredding requires use of a shredding device that must be capable of cutting the devices into as many tiny pieces as possible, without the device becoming stuck in the shredder during the process. Additional destruction techniques include disintegrating, pulverizing, melting, or incinerating the hard drive, so that all data has been destroyed.
HIPAA Hard Drive Wipe Requirements: Keeping Track of Sanitization
To demonstrate that data has been rendered irretrievable, providers and