Healthcare · PHI-Specialist

Healthcare ITAD: PHI destroyed, audit trail intact.

Q: Can you do on-site destruction at the hospital?

Yes — for sites where the data cannot leave the premises in a media-bearing form, we offer on-site destruction with mobile shred or witnessed wipe. Document pack is the same as in-facility destruction.

Q: How is patient PHI destroyed when Canada hospitals retire IT?

Patient PHI on retiring healthcare IT (EMR / EHR servers, PACS storage, imaging-modality consoles, lab informatics workstations) is destroyed to NIST 800-88 + IEEE 2883-2022 with per-asset wipe-log or shred-batch-ID captured live. Per-job Certificate of Destruction includes PIPEDA Schedule 1, Principle 4.7 (Safeguards) alignment statement plus a list of the data classifications the destroyed media held. Retention of the Certificate matches the underlying patient-data retention period the hospital operates under.

Q: Can destruction happen at the hospital site?

Yes. For hospitals operating data-locality policies where patient-bearing media cannot leave premises, on-site destruction is supported via mobile shred unit (truck-mounted industrial shredder with <2mm particle size) or witnessed-wipe operator. Document pack is identical to in-facility destruction; cost is typically 15–25% higher to cover the additional vehicle, operator, and time.

Q: How do you handle imaging-modality kit (MRI, CT, ultrasound)?

Modality kit holds patient data on internal storage that's not user-accessible — embedded controllers, calibration drives, image-cache SSDs. Standard wipe tools don't reach that storage. Our approach: coordinate with the OEM service team for safe data extraction (or on-site cryptographic erase via the OEM's service tool), then either wipe or destroy the storage component separately. The Certificate of Destruction lists each component separately so the audit trail demonstrates the data-bearing storage was specifically addressed.

Q: How do Canada hospitals dispose of patient data on retiring IT?

Hospital and clinic IT retirement in Canada touches three categories. EMR / EHR servers and storage: operationally similar to bank IT, NIST 800-88 destruction with documented per-asset wipe-log or shred batch ID, PIPEDA Schedule 1, Principle 4.7 (Safeguards) alignment statement on the Certificate. PACS storage: large data volumes, per-disk wipe-log or particle-size shred. Modality kit (MRI, CT, ultrasound, mammography): patient data on internal storage that's not user-accessible — coordinated with OEM service team for safe data extraction, then component-separate destruction documented per device.

Q: Can data destruction happen on-site at a Canada hospital?

Yes — and often required. Hospitals operating data-locality policies where patient-bearing media cannot leave premises use on-site destruction. Mobile shred unit (truck-mounted industrial shredder with particle-size <2mm at the loading bay) for HDDs, SSDs, tape, optical. Witnessed-wipe operator (NIST 800-88 Clear / Purge with hospital-side witness on every device) for media that can't be physically destroyed. Document pack identical to in-facility destruction. Cost typically 15-25% higher; lead time 5-10 business days.

Q: How is patient PHI handled during disposal in Canada?

Treated PIPEDA-sensitive across the entire device population — we don't ask the hospital's IT-asset-management team to inventory which serial held what classification. Every device that has held patient data is destroyed to the same NIST 800-88 + IEEE 2883-2022 standard with per-asset wipe-log or shred-batch-ID and two-operator + witness sign-off. Per-job Certificate of Destruction includes PIPEDA Schedule 1, Principle 4.7 (Safeguards) alignment statement. Retention of the Certificate matches the underlying patient-data retention period the hospital operates under.

Hospitals, clinics, imaging centres and healthcare TPAs face the same disposal problem as banks plus a layer of PHI sensitivity. We retire PACS storage, EMR servers, imaging-modality endpoints, and patient-portal kit with destruction documentation aligned to PIPEDA Schedule 1, Principle 4.7 (Safeguards).

Get a 2-Hour Quote → Destruction Spec

No obligation · written CAD response within 2 working hours

Healthcare scope we handle

Medical IT we routinely retire

PACS storage

Picture-archive systems holding decades of imaging data. Per-disk wipe-log or particle-size shred.

EMR / EHR servers

Electronic Medical Records kit at end of useful life; production-sensitive treatment matches banking-IT.

Imaging modalities

MRI, CT, ultrasound consoles holding patient data on internal storage. We coordinate with the OEM service team for safe data extraction.

Lab informatics

LIS / pathology workstations and lab-result archives.

Telehealth endpoints

Remote-care endpoints and patient-portal kit — branch-IT-pattern retirement.

TPA back-office

Third-party administrator workstations and claims-system archives.

Canada healthcare IT — the hard parts

Modality kit, PACS, EMR — and why each is different.

Hospital and clinic IT retirement in Canada touches three distinct categories. EMR / EHR servers and storage are operationally similar to bank IT — large amounts of personal data on enterprise storage, clear destruction-method paths, well-understood documentation. PACS (Picture Archiving and Communication Systems) carry decades of imaging data on enterprise storage — the destruction approach is similar to EMR but the data volumes are larger. Modality kit is the hard category: MRI, CT, ultrasound consoles, PET scanners, mammography units. These devices carry patient data on internal storage that's not user-accessible — embedded controllers, calibration drives, image-cache SSDs. Standard wipe tools don't reach that storage.

Our approach to modality kit: coordinate with the OEM service team for safe data extraction (or, on some devices, on-site cryptographic erase via the OEM's service tool), then either wipe or destroy the storage component separately. The Certificate of Destruction lists each component separately because the audit trail needs to demonstrate that the data-bearing storage was specifically addressed — not just ‘the device.’

Healthcare scope we routinely retire in Canada

Equipment we have processed for SG hospitals, clinics, TPAs and labs

♦ PACS storage — multi-PB enterprise arrays from major OEMs; per-disk wipe-log or particle-size shred.
♦ EMR / EHR servers — production-sensitive; treated equivalent to bank IT.
♦ Imaging modalities — MRI, CT, ultrasound, X-ray, mammography; OEM-coordinated data extraction.
♦ Lab informatics workstations — pathology, haematology, microbiology endpoints.
♦ LIS / RIS servers — laboratory and radiology information systems.
♦ Telehealth endpoints — remote-care kit and patient-portal infrastructure.
♦ TPA back-office workstations — third-party-administrator claims-system endpoints.
♦ Pharmacy management endpoints — prescription-system kit holding patient data.
♦ Patient self-service kiosks — at-clinic queue-management and check-in kit.

On-site destruction for sites where data cannot leave

Mobile shred + witnessed-wipe at hospital premises.

Some hospitals operate strict data-locality policies — patient data cannot leave the premises in media-bearing form, even sealed for transit. For these sites we run on-site destruction. Two formats. Mobile shred unit: a truck-mounted industrial shredder positioned at the loading bay, particle-size shred to <2mm, suitable for drives, SSDs, tape, optical media. Witnessed-wipe operator: NIST 800-88 Clear / Purge performed on-site by our operator with a member of the customer team witnessing the start and end of each device. Wipe log captured in real time and signed both sides.

The document pack is identical between on-site and in-facility destruction. The only difference is the location field on the Certificate and the customer-side in-person witness signature. Cost is typically 15–25% higher for on-site to cover the additional vehicle, operator, and time costs.

At a glance

Visual reference.

Sample Certificate of Destruction — issued per job

PIPEDA

PHI handling and 'reasonable security' obligations on disposal.

Data destruction

Methods, evidence, certificate format.

Secure transport

Locked, GPS-tracked uplift for clinical sites.

Canada healthcare ITAD — frequently asked

Can you do on-site destruction at the hospital?

Yes — for sites where the data cannot leave the premises in a media-bearing form, we offer on-site destruction with mobile shred or witnessed wipe. Document pack is the same as in-facility destruction.

How is patient PHI destroyed when Canada hospitals retire IT?

Patient PHI on retiring healthcare IT (EMR / EHR servers, PACS storage, imaging-modality consoles, lab informatics workstations) is destroyed to NIST 800-88 + IEEE 2883-2022 with per-asset wipe-log or shred-batch-ID captured live. Per-job Certificate of Destruction includes PIPEDA Schedule 1, Principle 4.7 (Safeguards) alignment statement plus a list of the data classifications the destroyed media held. Retention of the Certificate matches the underlying patient-data retention period the hospital operates under.

Can destruction happen at the hospital site?

Yes. For hospitals operating data-locality policies where patient-bearing media cannot leave premises, on-site destruction is supported via mobile shred unit (truck-mounted industrial shredder with <2mm particle size) or witnessed-wipe operator. Document pack is identical to in-facility destruction; cost is typically 15–25% higher to cover the additional vehicle, operator, and time.

How do you handle imaging-modality kit (MRI, CT, ultrasound)?

Modality kit holds patient data on internal storage that's not user-accessible — embedded controllers, calibration drives, image-cache SSDs. Standard wipe tools don't reach that storage. Our approach: coordinate with the OEM service team for safe data extraction (or on-site cryptographic erase via the OEM's service tool), then either wipe or destroy the storage component separately. The Certificate of Destruction lists each component separately so the audit trail demonstrates the data-bearing storage was specifically addressed.

How do Canada hospitals dispose of patient data on retiring IT?

Hospital and clinic IT retirement in Canada touches three categories. EMR / EHR servers and storage: operationally similar to bank IT, NIST 800-88 destruction with documented per-asset wipe-log or shred batch ID, PIPEDA Schedule 1, Principle 4.7 (Safeguards) alignment statement on the Certificate. PACS storage: large data volumes, per-disk wipe-log or particle-size shred. Modality kit (MRI, CT, ultrasound, mammography): patient data on internal storage that's not user-accessible — coordinated with OEM service team for safe data extraction, then component-separate destruction documented per device.

Can data destruction happen on-site at a Canada hospital?

Yes — and often required. Hospitals operating data-locality policies where patient-bearing media cannot leave premises use on-site destruction. Mobile shred unit (truck-mounted industrial shredder with particle-size <2mm at the loading bay) for HDDs, SSDs, tape, optical. Witnessed-wipe operator (NIST 800-88 Clear / Purge with hospital-side witness on every device) for media that can't be physically destroyed. Document pack identical to in-facility destruction. Cost typically 15-25% higher; lead time 5-10 business days.

How is patient PHI handled during disposal in Canada?

Treated PIPEDA-sensitive across the entire device population — we don't ask the hospital's IT-asset-management team to inventory which serial held what classification. Every device that has held patient data is destroyed to the same NIST 800-88 + IEEE 2883-2022 standard with per-asset wipe-log or shred-batch-ID and two-operator + witness sign-off. Per-job Certificate of Destruction includes PIPEDA Schedule 1, Principle 4.7 (Safeguards) alignment statement. Retention of the Certificate matches the underlying patient-data retention period the hospital operates under.