About the Author
Bob Johnson is the
Chief Executive Officer for NAID.
In states or countries yet to act, it is really a matter of ‘when’
not ‘if’ it is time for service providers to prepare. Many have
already. They are NAID AAA Certified, they have the proper
indemnification, they are drawing the link between service
contracts and compliance, and they have the confidence to
tell the client what they need to know instead of just asking
where they want to bin or how many pounds of IT equipment
they have. Their websites are filled with keywords and content
related to the GDPR, data destruction policies and procedures,
and blogs interpreting the new regulations their customers
face. When possible, they are writing articles and giving
presentations to business leaders. They are networking with
– or themselves becoming – consultants who can advise their
clients and prospects. If you aren’t doing all these things, you
The Best News of All: You’re
As many readers know, I’ve been in the secure destruction
business my entire adult career; much of that time as part
owner of several data destruction companies. I sold my
interest in the last of these companies one year prior to the
HIPAA effective date and six months before ENRON/Anderson;
both of which propelled the industry to new heights.
While I sold for personal reasons, there is no escaping the fact
that I missed the boat. The industry increased by as much as
tenfold in the years afterward.
For those still standing, for those ready to accept the
challenges and the opportunities, the prosperity resulting
from the coming data protection regulations over the next
three to five years may well be unprecedented.