Rules Regulation And Laws Flashcards
HIPAA
Health insurance portability and accountability act
Strict privacy and security rules on handling of PHI
Breach rule
Privacy rule
Security rule
Security Breach Notification Laws
All 50 states have individual laws
Not federal
Might not have to notify if files were encrypted
ECPA
Electronic Communications Privacy Act (older law)
Law to protect electric communication against warrantless wiretapping.
Could only monitor one circuit with warrant
Weakened by the Patriot Act
Patriot act of 2001
Blanket authorization can monitor all communications from and to that person with single warrant.
Allow ISP to hand over private info
Allow search and seizure without immediate disclosure
Computer Fraud and Abuse Act(CFAA)
Most commonly used law to prosecute computer crimes. Patriot act and identity theft enforcement and restitution act is part of this
Sarbanes Oxley Act of 2002(SOX)
Mandates certain practices in financial record keeping and reporting for corporations. Related to the accounting scandals in the 90s mandatory compliance standards for financial industry
General Data Protection Regulations(GDPR)
European Union law
Regulation on data protection and privacy for all individuals within EU
Right to access, right to erasure, data portability, data breach notification, privacy by design, data protection officers
Violation can be fined up to 20 million euros or 4% of annual revenue which is greater
Legacy laws in EU and between EU and US
EU Data Data Protection Directives-how data and gather and how it is used
EU-US Safe Harbor and Privacy Shield- how data is exchanged over the Atlantic between European Union in EU
Organization for Economic Cooperation and Development (OECD)
Issued in 1980 updated in 2013
Not mandatory; guidelines
30 member nations from across the world including US with the focus on the protection of data and privacy as personal data passes over borders
8 driving principles
Wassenaar Arrangement
Export/Import controls for conventional arms and dual use goods and technologies
41 countries are a part of the arrangement
10 categories