Home Compliance Standards
Category:

Compliance Standards

Staying informed about all of the cyber security compliance standards is essential to keeping your company safe from hackers. Read on to learn about the various steps you can take to stay up to date with your industry’s compliance standards.

Identity
HIPAA / Healthcare Industry

Healthcare Penetration Testing for HIPAA Compliance

by RSI Security
written by RSI Security

The Health Insurance Portability and Accountability Act of 1996 (HIPAA) has helped healthcare providers protect patients’ information for over 20 years. However, over the years, the number and complexity of cyber threats have grown exponentially. Many companies turn to HIPAA penetration testing to protect their stakeholders and outpace cybercriminals who view healthcare providers as lucrative targets. 

Continue Reading
0 comment
0 FacebookTwitterGoogle +LinkedinEmail
rsi security
GDPR

The GDPR Special Categories of Personal Data

by RSI Security
written by RSI Security

What separates the General Data Protection Regulation (GDPR) from its predecessors is its ability to recognize how the data landscape has changed over the past two decades. One way the regulation has accomplished that is by combining privacy protection with modern-day data processing techniques. And it has done so primarily through its recognition of special categories of dataThe GDPR  Special Categories of Data is a subsection of personal data that regulators have deemed as extra sensitive. This subsection of personal data requires additional security measures that ensure the privacy of the subject being processed.

Continue Reading
0 comment
0 FacebookTwitterGoogle +LinkedinEmail
computer
HITRUST

How Many HITRUST Controls Are There?

by RSI Security
written by RSI Security

One of the most robust and comprehensive cybersecurity frameworks developed in recent years is the Common Security Framework (CSF), a HITRUST Alliance publication. HITRUST pulls together loose ends from various industry-specific guidelines into one all-inclusive document. The CSF is not required for most businesses, but all companies stand to benefit from adopting its controls and achieving certification. 

Continue Reading
0 comment
0 FacebookTwitterGoogle +LinkedinEmail
Your Guide to HITECH Compliance Requirements
HITECH

Your Guide to HITECH Compliance Requirements

by RSI Security
written by RSI Security

The US Department of Health and Human Services (HHS) presides overall healthcare and patient safety matters to “enhance the health and well-being of all Americans.” Extending this protection to patients’ health information, the Health Insurance Portability and Accountability Act of 1996 (HIPAA) set baseline requirements for how hospitals and doctors process data. In 2009, HITECH compliance requirements expanded these protections to meet evolving threats of cybercrime. 

Continue Reading
0 comment
0 FacebookTwitterGoogle +LinkedinEmail
Policy
GDPR

Is A DPIA Required For GDPR

by RSI Security
written by RSI Security

There is a special feeling when launching a new project. It is exciting, a little nerve-racking, but always bursting with potential.

Your company might be going through a similar process and feeling. But you might be unsure about the privacy implications. You might wonder, is a DPIA required under GDPR?

Continue Reading
0 comment
1 FacebookTwitterGoogle +LinkedinEmail
A Breakdown of HITRUST Self-Assessment Costs
HITRUST

A Breakdown of HITRUST Self-Assessment Costs

by RSI Security
written by RSI Security

Companies seeking a comprehensive solution to their compliance and cyberdefense needs should look no further than the HITRUST Alliance’s Common Security Framework (CSF). A revolutionary document, the CSF collects the controls from several regulatory frameworks and combines them into a comprehensive infrastructure any company can adopt to improve its defenses. And the first step toward the airtight protections the CSF provides is the HITRUST  self-assessment questionnaire. Let’s take a look.

 

Continue Reading
0 comment
0 FacebookTwitterGoogle +LinkedinEmail
The GDPR Data Breach Reporting Timeline
GDPR

The GDPR Data Breach Reporting Timeline

by RSI Security
written by RSI Security

Let’s set the stage. It’s 5 pm at the end of a workday; you’re ready to clock off when all of a sudden you get a ping on your phone advising you of a potential security event… what next?

The first thing: do not panic. Ascertain what the event was about, and if there is evidence of a breach, act.

The GDPR data breach reporting timeline gives your organization 72 hours to report a data breach to the relevant supervisory authority. 

Continue Reading
0 comment
0 FacebookTwitterGoogle +LinkedinEmail
How Long Can You Store Data Under GDPR?
GDPR

How Long Can You Store Data Under GDPR?

by RSI Security
written by RSI Security

Issuing a sell-by-date on food products protects consumer health. Issuing a data deletion policy protects consumers’ privacy.

Many businesses are asking:  how long can you store data under GDPR?  Like the regulation regarding sell-by-dates, EU regulators have stated that the personal data you hold must have a shelf-life. 

Continue Reading
0 comment
1 FacebookTwitterGoogle +LinkedinEmail
Vulnerability Management Lifecycle
HIPAA / Healthcare Industry

HIPAA Breach Notification Rule – What does it require?

by RSI Security
written by RSI Security

Companies in the healthcare industry are attractive targets for cybercrime. That’s why the US Department of Health and Human Services (HHS) developed the Health Insurance Portability and Accountability Act of 1996 (HIPAA) to define and safeguard protected health information (PHI). Initially, HIPAA focused on the privacy and security of PHI to curb the number of cyberattacks. But with the passing of the HITECH Act, HHS built on the original framework to specify what companies should do when a HIPAA breach does happen.

 

Continue Reading
0 comment
0 FacebookTwitterGoogle +LinkedinEmail
Load More Posts

This website uses cookies to improve your experience. If you have any questions about our policy, we invite you to read more. Accept Read More