About the Author
Bob Johnson is the
Chief Executive Officer for NAID.
8. Member Protection: NAID makes available the only
industry-specific professional liability coverage, better
protecting themselves and their clients.
9. Sample Documents: NAID provides up-to-date, state-of-the-art service provider contracts specifically aimed
at HIPAA, GLBA, FACTA Red Flags and Final Disposal
Rules and, more recently the General Data Protection
Regulation, ensuring clients and service providers are
equipped with what they need to operate effectively in
10. Publications: The quarterly journal provides members with
insights on a wide range of issues to help members grow
their businesses, comply with regulations, and avoid risk.
11. Answered Questions: At no charge, NAID will answer any
member-question related to any aspect of running their
secure data destruction service – on sales, regulations,
contracts, insurance, policy development, or incident
response - even if it that means the association will have
to engage outside legal counsel or other professionals to
Though it is not a true “program,” there is another ingredient
in NAID’s success that is just as important. It might actually
be more important, insofar that it is the underlying cause for
No one has ever accused NAID of resting on its laurels.
Something is always cooking.
Media or technology mean changing techniques and require
us to modify the certification standards. NAID recently
added solid state device erasure to its electronic overwriting
certification for that very reason.
Regulations change, prompting the association to educate
members, and may or may not lead to new certification
requirements. Not long ago, the HITECH amendment to
HIPAA required a half dozen changes to the certification
requirements. Over the years, NAID has routinely provided
education, tools and advocacy when needed.
And, it is worth noting that NAID has, for the most part,
responded ahead of or in anticipation of the need. NAID was
the first to launch unannounced audits and continues to have
the most robust unannounced audit program in the industry
(and the only unannounced field audits). NAID commissioned
updated service contracts well in advance of the HITECH
amendment to HIPAA and did the same more recently when
the GDPR came along. When NIST introduced the guideline to
vary the software used for overwriting quality control in 2012,
NAID had been requiring it for four years already.
It’s What Members Should Expect
While this litany of NAID successes and assets might come off
a little boastful, neither the i-SIGMA Board of Directors nor
the management team see it that way – at all. We see this as
no less than what members should expect from their trade
association. Why pay membership dues for anything less?
Pats-on-the-back and at-a-boys don’t make NAID possible.
Members do. It starts and ends with business owners willing
to support the activities of other professionals who are
working on their behalf. They do it because they believe in the
dedication and veracity of those professionals, the objectives
they undertake, and what they deliver.
It is my hope too, that no one ever accuse us of not being
totally dedicated to the mission members have asked us to
As we now go to close the door on another year and open
the door on a new one, on behalf of the NAID staff who you
have given the privilege and trust to serve this industry, I
thank every NAID member for their belief in us, and we wholly
committed to giving you the best we can.