Glossary of Compliance
Compliance Glossary
Our list of curated compliance glossary offers everything you to know about compliance in one place.
ePHI
Any patient data that is created, stored, managed, transmitted, or shared via electronic means is Electronic Protected Health Information (ePHI). As per the HIPAA regulation, there are 18 HIPAA identifiers that qualify as ePHI. Covered entities and business associates are required to protect ePHI as per HIPAA security and privacy rule.
Additional reading
ISO 27001 Password Policy: Guidelines and Best Practices
Identity theft is not a joke, Jim. Millions of people suffer every year! Remember this dialogue from the popular TV show The Office? As compliance experts, we believe these are golden words to live by. Identity theft in a business environment ranges from wide net phishing attempts to targeted spear phishing attempts. And this is…
A Complete Overview of HIPAA Law and Compliance
The healthcare industry is a complex world. With doctors, clinics, service providers, patients, and more, running everything smoothly can get messy without regulations. HIPAA law aims to uncomplicate a number of issues around this industry. In this article, you will learn what HIPAA law is, what constitutes this law, who should follow it, and what…
ISO 27004 Standard: Key to Evaluating Information Security
Most organizations are aware of the ISO 27001 standard that lists guidelines for establishing and managing an Information Security Management System (ISMS). Businesses implement ISMS controls and devise new policies to improve security posture. So, what does an ISO 27004 standard have to do with all this? Is it a subset or security requirement that…
Sprinto: Your growth superpower
Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.
