Compliance Key Terms Drill Flashcards
Compliance
- The action of meeting requirements of accepted practices, specific standards, laws, prescribed rules and regulations, or terms of a contract. Sentence: To save money, Acme Inc is improving compliance procedures.
- That state of having met required regulations for the industry one is. Sentence: Acme Inc received their certification for dental compliance.
The purpose of compliance is to show that proper procedures and protections are in place to meet certain standards, requirements, laws, etc.
KnowBe4 offers a service called KCM, which stands for KnowBe4 Compliance Manager.
KCM
KCM is a software-as-a-service (SaaS) that simplifies the complexity of getting compliant and eases the burden of staying compliant.
Most organizations track compliance using spreadsheets, word processors or self-maintained software such as Sharepoint (a platform designed by Microsoft, used for document management and storage). This is inefficient, error prone, costly, and risky.
protected health information (PHI):
All recorded information about an individual’s health status, including their health care coverage.
personally identifiable information (PII):
Any information that can be used on its own or with other information to identify, contact, or locate a single person.
PCI DSS
Payment Card Industry Data Security Standard.
A document published by Payment Card Industry. The publication lists all requirements for securely handling credit cards and credit card information.
Organizations who accept credit cards must be PCI compliant. One of the requirements includes security awareness training.
HIPAA
Health Insurance Portability and Accountability Act.
A law enacted by the U.S. Congress and signed by President Bill Clinton in 1996 that requires healthcare organizations to protect personal health information (PHI).
GDPR
General Data Protection Regulation.
A regulation in European Union (EU) law on data protection and privacy for all individuals in the EU.
