Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » HIPAA » Limited Data Set

Limited Data Set

A limited data set is detailed as health information that excludes certain listed direct identifiers but that may include city; ZIP Code; state; elements of date; telephone numbers, fax numbers and other characteristics, numbers, or codes not listed as direct identifiers.

The direct identifiers defined in the Privacy Rule’s limited data lays down provisions that apply both to information about the individual as well as to information about the individual’s employers, relatives, or household members. The following list of identifiers must be deleted from health information if the data is to be permitted as a limited data set:

– Medical record numbers

– Names

– Postal address information

– Electronic mail addresses

– Social security numbers

– Certificate/license numbers

– Health plan beneficiary numbers

– Account numbers

– Telephone numbers

– Fax numbers

– Vehicle serial numbers and identifiers, including license plate numbers.

– Biometric identifiers, including fingerprints and voiceprints.

– Device identifiers and serial numbers

– Web universal resource locators (URLs)

– Full-face photographic images and any comparable images

– Internet protocol (I.P.) address numbers

Additional reading

Blogs Compliance management

How to perform Compliance Gap Analysis?

When it comes to compliance, starting off on the right foot requires surveying your present conditions. It has a defining impact on how fast companies get to the audit-ready phase and reap the benefits of certification. Chief compliance officers see compliance gap analysis as a guiding method to steering their compliance efforts. Conducting a thorough…

Blogs Compliance management

Vulnerability to Vigilance: The importance of Security Configuration Management

In an incident, an Amazon S3 bucket containing 1.5 million files was leaked due to a misconfiguration. It comprised sensitive data such as national ID numbers, employee PII, etc. Data breaches due to misconfigurations are common, and 80% of ransomware attacks are also attributed to misconfigurations. Misconfigurations are unintentional and common but have a devastating…

Blogs Compliance management Cybersecurity

Data Governance Framework: Comomplete Implementation Guide

As data becomes a vital component in fuelling business strategy and outcomes more than ever before, forward-looking organizations are striving to continuously enhance the trustworthiness of data. This is because data-driven decisions enable better insights and meaningful changes for the organization. However, building a data-informed culture calls for better data ownership, sharing, collaboration, and ongoing…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.

Contact sales