Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » HIPAA » BAA

BAA

A Business Associate Agreement (BAA) is a signed agreement between covered entities and business associates. HIPAA privacy rule mandates that covered entities who share PHI with third party service providers specify the responsibilities of each party to secure PHI. 

A BAA must describe the permitted rules to use or disclose PHI and require the business associate to implement appropriate safeguard to maintain the security of PHI. 

Additional reading

Guide to ISMS Awareness Training Program

Your Guide to ISMS Awareness Training Program

In the age of cloud computing, information is vulnerable. Bad actors are always on the lookout for their next target. They scope for vulnerabilities in an organization’s ISMS (Information Security Management System) and exploit them. This often disrupts business activities. Businesses look at security as a one-time activity and often forget that their employees are…
Everything You Need to Know about Cyber Essentials

Cyber Essentials: A Key Cybersecurity Certification for Organizations

Amid the rapid strides into the digital realm, the accompanying risks loom large. The emergence of Cyber Essentials stands as a pivotal response to these challenges within contemporary cybersecurity. Crafted by the National Cyber Security Centre (NCSC), this nationally recognized certification acts as a cornerstone, erecting a robust defense against prevalent online threats. Its implementation…
Types of security controls

Types of Security Controls With Examples [How to Implement]

In Dec 2022, OU Health, a hospital in Oklahoma, notified about 3000 patients about a breach of their health data after an employee’s laptop was stolen. Sensitive data like treatments, social security numbers, and insurance details were compromised. The incident highlights the importance of implementing all types of security controls. But what are security controls?…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.