Compliance

Question 1

Compliance

Answer 1

1. The action of meeting requirements of accepted practices, specific standards, laws, prescribed rules and regulations, or terms of a contract.
2. That state of having met required regulations for the industry one is in.

Question 2

KCM GRC

Answer 2

KnowBe4 Compliance Manager: Governance Risk Compliance

A project management and organization tool, specifically designed for risk and compliance related projects. It enables organizations to stay organized, stay prepared, and be able to demonstrate their processes and proof around these types of projects.

Like KMSAT, KCM GRC is a SaaS (software as a service).

Question 3

PHI

Answer 3

Protected Health Information

All recorded information about an individual’s health status, including their health care coverage.

Question 4

PII

Answer 4

Personally Identifiable Information

Any information that can be used on its own or with other information to identify, contact, or locate a single person.

Question 5

PCI DSS

Answer 5

Payment Card Industry Data Security Standard

A document published by the Payment Card Industry. The publication lists all requirements for securely handling credit cards and credit card information.

Organizations who accept credit cards must be PCI compliant. One of the requirements includes security awareness training (SAT).

Question 6

HIPAA

Answer 6

Health Insurance Portability and Accountability Act

A law enacted by the U.S. Congress and signed by President Bill Clinton in 1996 that requires healthcare organizations to protect personal health information (PHI).

Question 7

GDPR

Answer 7

General Data Protection Regulation

A regulation in European Union (EU) law on data protection and privacy for all individuals in the EU.