Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » HIPAA » Limited Data Set

Limited Data Set

A limited data set is detailed as health information that excludes certain listed direct identifiers but that may include city;  ZIP Code; state; elements of date; telephone numbers, fax numbers and other characteristics, numbers, or codes not listed as direct identifiers.

The direct identifiers defined in the Privacy Rule’s limited data lays down provisions that apply both to information about the individual as well as to information about the individual’s employers, relatives, or household members. The following list of identifiers must be deleted from health information if the data is to be permitted as a limited data set:

– Medical record numbers

– Names

– Postal address information

– Electronic mail addresses

– Social security numbers

– Certificate/license numbers

– Health plan beneficiary numbers

– Account numbers

– Telephone numbers

– Fax numbers

– Vehicle serial numbers and identifiers, including license plate numbers.

– Biometric identifiers, including fingerprints and voiceprints.

– Device identifiers and serial numbers

– Web universal resource locators (URLs)

– Full-face photographic images and any comparable images

– Internet protocol (I.P.) address numbers

Additional reading

Understanding IT Compliance: A Complete Guide

A modern organization today is characterized by various cross-functional departments with information technology intricately interconnected to each function. The interwoven landscape has, on the one hand, enhanced operational synergies, but at the same time, it has increased the risks of security failures and cyber threats. This reality has caused a surge in regulatory scrutiny and…

A Complete Guide to Audit Fatigue (And 7 Steps to Escape It)

Picture this: your team wraps up a SOC 2 audit. Evidence collected. Interviews done. A few weeks later, ISO 27001 kicks off. Same screenshots. Same access logs. The same people pulled back into the process. This goes on and on for every compliance framework you must comply with. And if this isn’t handled methodically, it…

Vendor Relationship Management Framework: Strengthen Partnerships and Performance

“83% of companies only discover vendor risk after engagement, and 31% of those risks lead to material impacts.” Vendors are integral to operations, but without structured communication, clear processes, and performance checks, you’re vulnerable to misalignment, missed deadlines, or even compliance failures. A vendor relationship management framework helps prevent that by giving you a repeatable…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.

Contact sales