Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » HIPAA » HIPAA Waiver Form

HIPAA Waiver Form

A HIPAA waiver form, also known as a medical record information release form, allows patients to authorize third parties to access their health records. It also permits healthcare providers to share information when needed. Patients can revoke or change these permissions at any time. Sharing medical records without a HIPAA authorization form is a violation.

HIPAA compliance requires obtaining a signed release form from patients before sharing their protected health information with others, except for routine disclosures related to treatment, payment, or healthcare operations allowed by the HIPAA Privacy Rule

When do you need a HIPAA Medical Information Release Form?

  • Sharing PHI with third parties for non-standard healthcare purposes, like disclosing information to an insurance underwriter
  • Using PHI for marketing or fundraising purposes
  • Providing PHI to a research organization
  • Disclosing psychotherapy notes
  • Selling PHI or sharing it for financial gain

Additional reading

Security Intelligence – What is the Role of Intelligence in Security

“2024 will be a year of deception and a busy year for cybercriminals,” says Charles Henderson, the global head of IBM X-force.  As AI-powered attacks come rolling, predictions and protection will become more crucial than ever. Organizations will need threat and attack predictions at a large scale to secure their infrastructure from the challenges that…

What Are the Key Exceptions to the CCPA? | [Types of Data and Companies]

You’ve likely got the CCPA basics down, and you’re familiar with the ins and outs of the California Consumer Privacy Act (CCPA). If not, you can refer to our recent article on CCPA compliance to brush up on the essentials. In this article, we’ll talk about something equally important: CCPA exemptions. At first glance, you…

COSO ERM Framework: Key Components and Implementation Guide

In March 2024, cloud service giant Microsoft had their head hung in shame after the Cyber Safety Review Board (CSRB) provided a 30-page review of its inadequate security culture.  The CSRP report read “..troubling examples of decision-making processes within the company that did not prioritize security risk management at a level commensurate with the threat.”…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.

Contact sales