πŸ“ž +1 437-996-2283 βœ‰ purchase@maxicom.ca
Free 2-Hour Quote β€” Canada
Get a Quote β†’
NIST 800-88 IEEE 2883-2022 PIPEDA-Aligned Data Destruction Per-Job Certificate of Destruction CAD Settlement 2-Hour Quote SLA
OSFI B-13 Β· FSM-N21 / FSM-N22

OSFI B-13 & ITAD: FSM-N21 + FSM-N22 for asset disposal.

The Monetary Authority of Canada’s TRM Notice (FSM-N21) and Cyber Hygiene Notice (FSM-N22) β€” both effective 10 May 2024 β€” set legally enforceable expectations on regulated FIs. Asset disposal sits inside both. Here's how we align our delivery to support your TRM evidence.

Get a 2-Hour Quote β†’ Destruction Spec
No obligation Β· written CAD response within 2 working hours
What TRM expects

TRM expectations on third-party service selection.

FSM-N21 (TRM) requires regulated FIs to apply technology-risk-management principles across the IT lifecycle β€” including disposal. In practice that means choosing service providers (including ITAD vendors) with a documented risk basis, getting evidence of the work performed, and being able to demonstrate continuity of control from in-service through to destruction.

The OSFI does not maintain a register of approved ITAD vendors. What it expects is that you can demonstrate, on inspection, that the vendor you chose performs the service competently and that the evidence of each disposal is on file.

What we deliver for your TRM file

TRM-aware document pack per job

  • ♦ Vendor due-diligence pack: insurance certificates, parent-group references, sample destruction certificate, sample chain-of-custody log.
  • ♦ NDA + SoW + per-asset disposition decision before pickup.
  • ♦ Asset list reconciled against your CMDB β€” shows continuity of control.
  • ♦ Locked-transit log with GPS evidence β€” shows custody never lapsed.
  • ♦ NIST 800-88 destruction with two-operator + witness sign-off β€” shows the destruction was performed competently.
  • ♦ Per-job Certificate of Destruction citing TRM-aware protocols β€” slotting straight into your TRM evidence file.
Honest about scope

What OSFI does and does not certify.

The OSFI does not certify ITAD vendors. The phrase 'OSFI-aligned' in our materials means we provide documentation suitable to support your TRM evidence β€” not that the OSFI has reviewed or approved Maxicom Canada. Any vendor claim of OSFI endorsement for ITAD is not a real designation.

Related

Read next

Banking & Finance

How we engage with OSFI-regulated banks and fintechs.

Read more β†’

Data destruction

The destruction methods and evidence format.

Read more β†’

PIPEDA

PIPEDA Schedule 1, Principle 4.7 (Safeguards) alignment for the personal-data layer.

Read more β†’
Continue reading

More on this topic

PIPEDA
Section 24 obligations on disposal.
Certificate of Destruction
Per-job format walkthrough.
Data Destruction
NIST 800-88 + IEEE 2883-2022 with per-job certificate.
Banking & Finance ITAD
OSFI-aware retirement for banks, insurers, fintechs.
Insurance Carriers
Actuarial-system retirement with audit trail.
NIST 800-88
Clear / Purge / Destroy decision tree.
FAQs Β· 1 question

Maxicom Canada β€” frequently asked

Do you do OSFI-aligned destruction certificates as standard?

Yes. Every Certificate of Destruction we issue can include the TRM-aware citation by default. If your bank's TRM file expects specific wording, send it; we'll match it.

Last reviewed Β· Maxicom Canada Editorial & Compliance Team Β· Suggest a correction

Still reading?

Get an CAD-denominated quote within 2 working hours.

Send an asset list to purchase@maxicom.ca or call +1 437-996-2283. No obligation; per-line residuals; PIPEDA-aligned destruction included.

Request a Quote β†’
Get started β€” it takes 2 minutes

Get a written CAD quote within 2 hours.

No obligation. PIPEDA-aligned destruction documentation, NIST 800-88 + IEEE 2883-2022 standards, per-job Certificate of Destruction, settlement on uplift. Three ways to reach us.

Get a Quote 2-hour SLA Β· written response Call us +1 437-996-2283
1 Send asset list. CSV / spreadsheet with serials, makes, models.
2 Get CAD quote within 2 working hours, per-line residuals.
3 Locked uplift + NIST 800-88 destruction + CAD settlement.
πŸ“ž +1 437-996-2283 Β· Mon-Fri 09:00-18:00 ET Β· πŸ“§ purchase@maxicom.ca