Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » HIPAA » HIPAA Safeguards

HIPAA Safeguards

The HIPAA Security Rule defines three crucial standards for safeguarding health information:

Administrative Safeguards

These safeguards are vital to manage security measures and protect ePHI. Usually, a designated security officer oversees these actions which include risk assessments, access controls, incident response, and security awareness training.

Physical Safeguards

These measures focus on securing buildings, equipment, and information systems. They involve controlling access, verifying identities, and data backup before you decide on equipment or proper hardware disposal.

Technical Safeguards

This aspect revolves around technology usage, policies, and procedures. It covers audit controls, user verification, and automatic log-off to prevent unauthorized access. In this safeguard, encryption plays a significant role in protecting ePHI from breaches.

Additional reading

ISO 27001

ISO 27001 Business Continuity (Annex A. 17 Explained)

In modern businesses, data and connectivity reign supreme and are considered the foundation that paves the path to success. Even the tiniest organizations rely heavily on technology, making any disruption a potential nightmare.  To highlight this, according to Datto, a mere hour of downtime can cripple small businesses with a cost of $10,000. For larger…
soc 2 training

A Quick Guide to SOC 2 Training

SOC 2 is one of the most globally accepted frameworks to demonstrate your business’ approach toward the security and integrity of data. As a result, a SOC 2-compliant company is likely to crack more deals. The reason for that is simple: they can show their prospects that their business environments are safe. In this article,…
PHI Disclosure

A Quick Guide to PHI Disclosure

If you work in a healthcare-related field, you’re familiar with safeguarding patient privacy under HIPAA. But let’s face it—putting those concepts into action can be overwhelming, especially when new challenges arise while identifying protected health information (PHI) and understanding covered entities. Staying up-to-date with evolving regulations and technology is a challenging task. Fear not, though!…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.