Many document destruction providers perform cybersecurity and IT compliance audits. In today’s security and privacy driven environment, document destruction services are an increasingly popular choice for companies who want assurances when destroying paper, CD’s, DVD’s, hard drives, and other sensitive information that my contain Personally Identifiable Information (PII). Companies can outsource their shredding needs to mobile shredding trucks that shred on-site or choose to drop-off the material at an off-site shredding facility. Either way, privacy is of the utmost importance. Many companies that contract with document destruction providers want assurance around their internal controls to verify the documents are properly handled and destroyed in accordance with contract terms. Implementing a robust compliance program is critically important for document destruction providers. Control frameworks (such as SOC 1, SOC 2, ISO 27001, etc.) are widely accepted and help document destruction providers differentiate themselves from their competitors by demonstrating their commitment to maintaining a strong IT compliance program.