Glossary of Compliance
Compliance Glossary
Our list of curated compliance glossary offers everything you to know about compliance in one place.
BAA
A Business Associate Agreement (BAA) is a signed agreement between covered entities and business associates. HIPAA privacy rule mandates that covered entities who share PHI with third party service providers specify the responsibilities of each party to secure PHI.
A BAA must describe the permitted rules to use or disclose PHI and require the business associate to implement appropriate safeguard to maintain the security of PHI.
Additional reading
Understanding NIST 800 137: A comprehensive guide to Information Security Continuous Monitoring (ISCM)
The National Institute of Standards and Technology (NIST) has long been a pivotal force in shaping global standards and guiding cybersecurity professionals. NIST has developed essential frameworks and guidelines that enhance the capabilities of both industry and government in identifying and responding to cyber threats. One such critical publication is NIST SP 800 137 which…
GDPR Compliance for US Companies (2024)
Back in 2017, platforms like Facebook didn’t give data privacy as much attention as it does today. A year later, the GDPR rolled around and quickly became known as one of the most stringent, complex, and rigorous privacy protection law there is. And just like that, Facebook and other tech giants were forced into rethinking…
11 Best Practices for PCI DSS Compliance
Maintaining a secure environment has become the top priority with the increasing volume of malicious attacks on business processing user card data. The (Payment Card Industry Data Security Standards) PCI DSS compliance, though not legally mandated, is a globally accepted security standard for businesses processing transactions either in physical or digital form. This article focuses…
Sprinto: Your growth superpower
Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.
