The American Institute of Certified Public Accountants (AICPA) SOC 2 (Service Organization Control 2) framework is a set of guidelines and requirements for service providers to demonstrate their ability to maintain a secure and reliable system for processing and storing customer data.
FISMA – Federal Information Security Modernization Act
The Federal Information Security Management Act (FISMA) is a United States federal law that was enacted in 2002 to establish a framework for ensuring the security of government information and systems
HIPAA – Health Insurance Portability and Accountability Act
The Health Insurance Portability and Accountability Act (HIPAA) is a United States federal law that was passed in 1996. HIPAA sets national standards for the protection of individuals? health information, including electronic health records (EHRs).
GDPR – General Data Protection Regulation
The General Data Protection Regulation (GDPR) is a comprehensive data protection framework that was introduced by the European Union (EU) in May 2018. The GDPR aims to provide individuals with greater control over their personal data, while also placing obligations on organizations that process personal data to ensure that they are handling it in a responsible and transparent manner.