Glossary of Compliance
Compliance Glossary
Our list of curated compliance glossary offers everything you to know about compliance in one place.
De-Identified Information
De-Identified Information is health information that does not identify an individual if covered entities hold that there is no reasonable cause to believe that it can be used to identify an individual.
The HIPAA privacy rule specifies two methods to de-identify PHI.
– Expert determination method which applies statistical or scientific principles to conclude that there is very small risk that the recipient can identify the individual.
– In the Safe harbor method, 18 identifiers are removed.
Additional reading
How to build a risk-aware culture in your organization?
TL,DR: A risk-aware culture is an organizational mindset where employees demonstrate shared commitment to identifying, assessing, and mitigating risks as part of everyday decision-making Organizations often focus on technical controls while overlooking that employees are the weakest link, setting weak passwords, clicking phishing links, and writing credentials on sticky notes The 2024 State of Risk…
Guide to Privacy Compliance [Examples, Challenges, & How to Comply]
TL,DR: Privacy compliance is adherence to data protection laws governing collection, processing, and management of sensitive data. Yakima Valley Memorial Hospital paid $240,000 in HIPAA settlement for unauthorized PHI access Building a program follows 6 steps: identify applicable laws, conduct risk assessments, implement controls, enforce policies, train employees, and monitor systems continuously Applicability depends on…
Difference Between NIST 800-53 and NIST 800-171
If you’re a government contractor, the burden of demonstrating compliance and implementing certain mandatory resource requirements may seem overwhelming. You’re certainly not alone in this. Organizations that process government contractors are often mandated to become compliant with NIST 800-53, NIST 800-171 among NIST CSF, but which one of the two should your organization become compliant…
Sprinto: Your growth superpower
Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.
