Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » HIPAA » Limited Data Set

Limited Data Set

A limited data set is detailed as health information that excludes certain listed direct identifiers but that may include city;  ZIP Code; state; elements of date; telephone numbers, fax numbers and other characteristics, numbers, or codes not listed as direct identifiers.

The direct identifiers defined in the Privacy Rule’s limited data lays down provisions that apply both to information about the individual as well as to information about the individual’s employers, relatives, or household members. The following list of identifiers must be deleted from health information if the data is to be permitted as a limited data set:

– Medical record numbers

– Names

– Postal address information

– Electronic mail addresses

– Social security numbers

– Certificate/license numbers

– Health plan beneficiary numbers

– Account numbers

– Telephone numbers

– Fax numbers

– Vehicle serial numbers and identifiers, including license plate numbers.

– Biometric identifiers, including fingerprints and voiceprints.

– Device identifiers and serial numbers

– Web universal resource locators (URLs)

– Full-face photographic images and any comparable images

– Internet protocol (I.P.) address numbers

Additional reading

iso 27001 for small business

Guide to ISO 27001 for Small Businesses

Your small business is important for continued economic prosperity. About 90% of the world’s businesses are small and medium-sized enterprises, and they are innovating,  creating employment, and stimulating growth. This guide to ISO 27001 for small businesses is designed to help you navigate the complexities of ISO 27001 compliance. With many SMEs competing with larger…
pci dss levels

PCI DSS Levels: Ensuring Secure Payment Processing

Credit card transactions have become the lifeblood of commerce. With this convenience comes a critical responsibility: protecting sensitive cardholder data. As cyber threats evolve and data breaches make headlines, businesses of all sizes must prioritize the security of payment information.  This is where the Payment Card Industry Data Security Standard (PCI DSS) comes in. It’s…

Risk Management Automation: A Comprehensive Guide

Running a business involves risks—circumstances or incidents that could jeopardize your company’s capacity to continue operations. The ability to spot early signs of risk and mitigate them is essential for an organization to survive. Loss in resources and reputation can result from even the smallest elements being overlooked. Uncertain situations can probably be managed most…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.

Contact sales