Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » HIPAA » HIPAA Journal

HIPAA Journal

The HIPAA Journal is a useful website for all things HIPAA. It’s got news, breach info, tips, and the latest in healthcare data security. They’ve got sections like “New HIPAA regulations” and “HIPAA Changes 2023.”

You can find out about the latest HIPAA rule updates, like telehealth rules and security changes. They even wrote about how 79% of healthcare companies had API security problems last year. It’s a good way to keep up with what’s happening in HIPAA.

You can also get the scoop on recent healthcare data breaches. 

They tell you how they happened, what it meant for patients and organizations, and how to improve security. At that time, they covered CareSource and their MOVEit data breach lawsuits.

Additional reading

Cyber Risk Quantification: Assessing and Prioritizing Cyber Threats

TL;DR Cyber risk quantification is important to meet regulatory obligations, make data backed decisions, effectively manage resource allocation and meet stakeholder expectations. Two main models of cyber risk quantification are the NIST risk assessment framework and the Factor Analysis of Information Risk (FAIR) model. Challenges associated with cyber risk quantification are lack of data visibility, a rapidly…

The New Vendor Tiering Model: How to Categorize Vendor Risk in an AI Era

TL;DR AI is changing vendor tiering because risk is no longer limited to core infrastructure vendors.  Traditional backbone categories like cloud, cybersecurity, and DevOps still require the highest governance rigor, but AI integrations are now expanding runtime exposure across CRMs, collaboration tools, HR systems, finance platforms, and other operational SaaS categories. At the same time,…

What Is the HIPAA Minimum Necessary Rule?

Much of the administrative simplification rule of HIPAA focuses on preventing unauthorized disclosure of protected health information (PHI). A good practice that helps to protect PHI is applying the HIPAA minimum necessary rule standard.  This article details what this rule entails, how it works, cases where it is not applicable, and what happens when you…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.

Contact sales