Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » HIPAA » HIPAA Waiver Form

HIPAA Waiver Form

A HIPAA waiver form, also known as a medical record information release form, allows patients to authorize third parties to access their health records. It also permits healthcare providers to share information when needed. Patients can revoke or change these permissions at any time. Sharing medical records without a HIPAA authorization form is a violation.

HIPAA compliance requires obtaining a signed release form from patients before sharing their protected health information with others, except for routine disclosures related to treatment, payment, or healthcare operations allowed by the HIPAA Privacy Rule.

When do you need a HIPAA Medical Information Release Form?

Sharing PHI with third parties for non-standard healthcare purposes, like disclosing information to an insurance underwriter
Using PHI for marketing or fundraising purposes
Providing PHI to a research organization
Disclosing psychotherapy notes
Selling PHI or sharing it for financial gain

Additional reading

Blogs SOC 2

SOC 2 Certification: 5 Steps to Get SOC 2 Certified in 2026

You are here because somewhere in your business improvement plan because your business prospects specifically asked you for your SOC 2 certification. For a cloud hosted company processing sensitive customer data, this is not uncommon and a major sales unblocker. But in order to be certified, you should understand the nitty gritties of the process….

CCPA Privacy Policy: What is it + Sample Template

The California Consumer Privacy Act (CCPA) lays down some pretty specific rules for how businesses should handle the personal information of California residents—especially when it comes to your website’s privacy policy (aka your CCPA privacy notice). The new guidelines outline how your business collects, uses, and discloses data. It also serves as a critical reference…

Blogs HIPAA

HIPAA-Compliant Website

Data breaches may be inevitable for healthcare organizations. But implementing HIPAA safeguards can go a long way toward helping you protect confidential patient information. But what’s that got to with your website? A lot. Especially if you host or plan on hosting a website that stores or transmits protected health information. Your website isn’t just…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.

Contact sales