Glossary of Compliance
Compliance Glossary
Our list of curated compliance glossary offers everything you to know about compliance in one place.
ePHI
Any patient data that is created, stored, managed, transmitted, or shared via electronic means is Electronic Protected Health Information (ePHI). As per the HIPAA regulation, there are 18 HIPAA identifiers that qualify as ePHI. Covered entities and business associates are required to protect ePHI as per HIPAA security and privacy rule.
Additional reading
What is PCI DSS Network Segmentation? (Quick Guide)
With cybersecurity threats becoming ubiquitous, network segmentation makes for an effective way for cloud-hosted companies that processes payment card data to secure access to sensitive cardholders’ data. While the Payment Card Industry Data Security Standard (PCI DSS) doesn’t mandate it, network segmentation allows organizations to prioritize and focus their security efforts by segmenting and isolating…
7 Best PCI DSS Auditors in 2025
A PCI audit is a thorough examination of a merchant’s compliance with PCI DSS requirements and is done by PCI DSS auditors. It includes numerous individual controls or safeguards for protecting cardholder information (such as the primary account number, CAV/CID/CVC2/CVV2, and other types), as well as systems that interact with payment processing. To conduct an…
What are the PCI DSS Encryption Requirements?
Payment Card Industry Data Security Standards or PCI-DSS requires organizations to encrypt credit card information stored in their database while ensuring data remains secure when shared outside the company. For all organizations that process, transmit, or store payment and credit card data information, as established by the Payment Card Industry’s (PCI) Data Security Standards (DSS),…
Sprinto: Your growth superpower
Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.
