Canon imageRUNNER ADVANCE devices provide both onboard and optional data protection systems to help secure the information and images stored on your device's hard drive. Natively, they compress all data into a proprietary format written to random, noncontiguous locations on the hard drive and store directory data separately. In addition, you can access a variety of standard and enhanced features to help you comply with your security policy.
The optional HDD Data Encryption Kit features AES 256-bit encryption to help ensure that all data stored on the internal disk drive is protected. In recognition of its effectiveness, the kit has received Common Criteria Certification of Evaluation Assurance Level 3 (EAL3).
Canon imageRUNNER ADVANCE MFPs feature a TPM chip that separately and safely stores the key that encrypts confidential information such as passwords, public key pairs for SSL communication, and user certificates stored on your device hard drive.
Best practices, and often company policies, usually recommend that systems be completely erased prior to being redeployed or at the end of their usable lives. The Hard Disk Drive Format feature, which comes standard on every imageRUNNER ADVANCE device, completely overwrites all data stored on the hard disk with null data. This includes files, job logs, Address Books, and customized user mode settings.
The optional HDD Data Erase Kit enables administrators to configure their imageRUNNER ADVANCE device to overwrite the internal image server hard disk and erase previous data as part of routine job processing. The technology can be set to overwrite once with null data, once with random data, three times with random data, or with the DoD 5022.22M 3-pass overwrite mode.
The optional imageRUNNER Removable HDD Kit enables administrators to physically remove the device's internal hard disk so it can be locked down in a secure place after hours. The drive can then easily be reinstalled for use during normal working hours.
Canon U.S.A. does not provide legal or regulatory advice concerning customers' compliance with specific laws including, without limitation, Sarbanes Oxley, HIPAA, GLBA, Check 21, USA Patriot Act or federal and state privacy laws. Customers should always consult with qualified counsel to determine if they are in compliance with all applicable laws.