Certified data destruction — the reason you can sell safely.
Data security is the reason most organizations hesitate to sell or dispose of old IT, so we lead with it and put it in writing. Every data-bearing drive is sanitized to NIST 800-88 and IEEE 2883-2022, with a certificate per drive and a documented chain of custody — aligned to Canada's privacy laws and OSFI Guideline B-13.
The method is matched to the media — and documented per drive.
Different media need different methods, and an auditor wants to see the right one on the certificate. We sanitize spinning disk to NIST 800-88, solid-state to the current IEEE 2883-2022 standard, and physically destroy anything that can't be verifiably wiped. Every drive gets its own certificate, and the whole job travels on a documented chain of custody.
NIST 800-88
The framework auditors default to for media sanitization — Clear, Purge or Destroy, chosen per media and data classification. We default to Purge (which preserves the asset for reuse) and escalate to Destroy where the data or media demands.
IEEE 2883-2022
The current authoritative standard for sanitizing solid-state media — it supersedes the older SSD guidance and treats NAND correctly. We apply it to every retiring SSD/NVMe drive, and document the firmware Sanitize and its verification.
Physical destruction
For top-classified media, non-functional drives, or where reuse isn't appropriate — shredding or, for magnetic tape, degaussing — with witness or on-site destruction available on request.
Certificate & chain of custody
A per-drive certificate of destruction — the document a regulator, auditor or incident-response team reads — plus a documented chain of custody from collection to settlement.
Aligned to the Canadian rules your auditor asks about
We keep the global destruction standards (NIST, IEEE) and align the process to the Canadian laws that govern your data.
PIPEDA
Canada's federal private-sector privacy law — secure disposal of personal information is a safeguarding obligation.
Quebec Law 25
Quebec's modernized private-sector privacy regime, with strict handling and destruction expectations.
Alberta & BC PIPA
The provincial private-sector privacy acts governing organizations in Alberta and British Columbia.
PHIPA (Ontario)
Ontario's health-information privacy law — relevant when retiring healthcare IT and imaging systems.
OSFI Guideline B-13
Technology and cyber-risk expectations for federally regulated financial institutions.
NIST 800-88 & IEEE 2883
The global sanitization standards we apply everywhere — the method named on every certificate.
Honest about our credentials.
A little honesty buys a lot of credibility with compliance buyers, so plainly: we do not claim NAID AAA membership — we operate to a NAID-aligned discipline (vetted operators, witness destruction available, per-asset chain of custody). Where a contract requires AAA certification specifically, we partner with a NAID-AAA-certified destruction subcontractor and document the chain of custody through the partnership. We do not claim R2, e-Stewards or ISO certifications we have not been audited against, and we do not display marks we don't hold. No surprises at the audit.
Nothing is resold until your data is destroyed.
Everything above exists so one thing is always true: nothing you send us is resold or recycled until its data is destroyed to the right standard and documented.
Why sellers choose Maxicom.
We pay, we don't charge
Value recovered and paid in CAD against your PO — not a disposal fee. That single difference is the whole point.
We buy at the source
Direct from businesses, decommissions and the trade — so prices are keener and stock has a known history.
Honest about data & certs
NIST 800-88 / IEEE 2883 with a certificate per drive. No R2, e-Stewards, ISO or NAID AAA badges we don't hold.
We take the whole lot
Mixed conditions, faulty units, whole estates — one deal, not cherry-picking the easy items.
We respect the trade
Resellers' and ITADs' stock moves through our network on NDA, never back into your own market.
Documented, audit-ready
A written line-item offer, chain of custody, and certificates — the paperwork your auditor and privacy officer expect.
The short answers.
Is a software wipe enough, or do I need physical destruction?
What standards do you destroy data to?
What certificate do I get?
Which Canadian laws does this align to?
Are you NAID AAA certified?
Can we witness the destruction?
Do you serve businesses across all of Canada?
Can you sign an NDA?
What documentation will we receive?
Destroy your data to standard — and keep the proof.
Talk to us about your data-destruction and compliance requirements, or send your asset list for a written CAD offer with per-drive certificates included.