Information Destruction criteria

Companies wishing to join the BSIA's Information Destruction Section must meet the following criteria in order to be admitted to the section: 

Information Destruction Company:

A company that is involved in the secure destruction of confidential information and/or materials.

ID Section ISO 27001 / ISO 9001 UKAS certification:

In accordance with clause 2.3 of the Model Section Rules of the Association, membership of the Information Destruction Section is conditional on the Operating Board being satisfied that the member has the relevant BS EN ISO 9001 certification or BS EN ISO 27001 Certification. 

New applicants and probationary members shall undertake to obtain BS EN ISO 9001 or BS EN ISO 27001 within 1 year of obtaining membership.  The Section Committee may extend that period to a maximum of 24 months, provided it is satisfied that the member is making progress towards registration. There is no requirement to have both certifications. 

Companies engaging in the physical destruction of data or data carriers - Certification to ISO 9001 UKAS certification or ISO 27001. Members shall comply with the requirements of BS EN 15713.

IT Asset Disposal (ITAD) Companies engaged in the electronic erasure of data only shall be certified to the Asset Disposal Information Security Alliance (ADISA) certification and adopt the principles and processes of BS EN 15713.