Federal laws like HIPAA, Gramm-Leach-Bliley and The Fair and Accurate Credit Transactions Act (FACTA) impose document security and destruction requirements on many industries. The Georgia Information Privacy Act (SB 425) makes it mandatory for all businesses to ensure the privacy of their electronic and paper-based records. Any company in Georgia proven to have discarded personal information without first shredding or otherwise destroying it, faces up to $10,000 in fines. FACTA imposes similar requirements on financial institutions or other businesses destroying documents containing consumer information.