AI-based solution designed to automate personal data discovery and classification

Data Inventory

Discover personal data across multiple systems in the cloud or on-premise

Data Processing Inventory (ROPA)

Harbor cooperation between DPO, Legal Services, IT and Marketing

Data Subject Request

Turn data subjects request into an automated workflow with a clear insight into data every step of the way

Assessment Automation

Collaborate with stakeholders and manage DPIA and LIA in real-time with Assessment Automation

Third Party Management

Guide your partners trough vendor management process workflow

Risk Management

Identifying the risk from the point of view of Data Subject

Incident Management

Quickly respond, mitigate damage and maintain compliance

Consent and Preference Management

Data Removal

Introducing end-to end automation of personal data removal

State-of-Privacy-Assessment (SOPA)

11 steps to jumpstart your compliance process

15/11/2023

How to conduct Legitimate Interests Assessment (LIA) ?

15/10/2023

Learn the terms

European Court of Justice (ECJ)

Data Retention

General Data Protection Regulation

Here you can find the official content of the Regulation (EU) 2016/679 (General Data Protection Regulation) in the current version. All Articles of the GDPR are linked with suitable recitals.

Latest papers

India’s Digital Personal Data Protection Act DPDP

13/10/2023

Saudi Arabia’s Personal Data Protection Law PDPL

24/08/2023

Legal & Ethical Review & Mastering Informed Consent for Clinical Trial Studies

22/03/2023

HIPAA

What is HIPAA?

HIPAA stands for the Health Insurance Portability and Accountability Act, a federal law enacted in 1996 in the United States. The act sets standards for the privacy and security of protected health information (PHI) and applies to healthcare providers, health plans, and healthcare clearinghouses. It requires these entities to implement appropriate administrative, physical, and technical safeguards to protect the confidentiality, integrity, and availability of electronic PHI. HIPAA also establishes requirements for safeguarding PHI in the course of transmitting it electronically, such as through electronic medical records.

Rights under HIPAA

The Health Insurance Portability and Accountability Act (HIPAA) provides several rights to individuals regarding their protected health information (PHI), including:

Right to access: Individuals have the right to access and obtain a copy of their PHI.
Right to amendment: Individuals have the right to request that their PHI be amended if they believe it is inaccurate or incomplete.
Right to an accounting of disclosures: Individuals have the right to receive an accounting of certain disclosures of their PHI made by their healthcare provider or health plan.
Right to receive a notice of privacy practices: Individuals have the right to receive a notice explaining how their PHI may be used and disclosed.
Right to file a complaint: Individuals have the right to file a complaint if they believe their privacy rights have been violated.
Right to confidentiality: Healthcare providers and health plans are required to maintain the confidentiality of PHI.

What can health information include?

The information protected under the Health Insurance Portability and Accountability Act (HIPAA) includes:
- Personal health information (PHI) such as medical records, diagnostic test results, treatments, and medical histories.
- Demographic information such as name, address, date of birth, and social security number.
- Information about health plan enrollment and payment history.
- Information about past, present, or future physical or mental health conditions.
- Information about the provision of health care, such as the type and date of treatment.

All
A
B
C
D
E
F
G
Glossaries
H
I
K
L
M
N
O
P
R
S
T
U
V

Access Control

Accountability principle

Accuracy

Anonymization

Article 29 Working Party

Audit trail

Authentication

Behavioral Advertising

Biometric Data

Breach disclosure

California Consumer Privacy Act (CCPA)

California Online Privacy Protection Act (CalOPPA)

CIA Triad

Clinical Trial Regulation (CTR)

Compliance

Consent

Cookie consent

Cookies

Cross border processing

Cybersecurity

Dark Data

Data Breach

Data Controller

Data Domain

Data Governance

Data Graveyard

Data interception

Data Minimization

Data Privacy

Data Processor

Data Protection Authority

Data Protection Officer

Data Quality Management

Data Removal

Data Retention

Data Subject

De-identifiable data

Defensive Data Strategy

Direct Marketing

e-Privacy Directive

Encryption

EU member states

EU-US Privacy Shield

European Commission

European Council

European Court of Justice (ECJ)

European Data Protection Board (EDPB)

European Data Protection Supervisor (EDPS)

Explicit consent

Fairness

FDPIC

GDPR fines

GDPR Principles

General Data Protection Regulation

Genetic data

HIPAA

Incident response

Information Privacy

Invisible processing

Keylogging

Lawfulness

Lead Supervisory Authority (LSA)

Legal Basis for Processing

Machine learning

NDPR/ Nigeria Data Protection Regulation

NIST Privacy Framework

NYOB

Offensive Data Strategy

Opt-in

Opt-out

Payment Service Directive (PSD2)

Personal data

Personal Information Protection Law (PIPL)

Privacy by default

Privacy by design

Privacy risk assessment

Pseudonymization

Records of processing activities

Retention period

Right of access

Right to be forgotten

Right to be informed

Right to data portability

Right to object to processing

Right to rectification

Right to restrict processing

Rights (per GDPR)

Rights in relation to automated decision making and profiling

Risk assessment

Risk management

Sensitive personal data

Shadow processing

Soft opt-in

Standard Contractual Clauses

Structured data

Third country

Third party

Transparency principle

Unstructured data

Virtual Private Network (VPN)

Latest Blog posts

Learn the terms

General Data Protection Regulation

Latest Papers

Latest Blog posts

Learn the terms

General Data Protection Regulation

Latest Papers

Latest Blog posts

Learn the terms

General Data Protection Regulation

Latest Papers

Latest Blog posts

Learn the terms

General Data Protection Regulation

Latest Papers

Latest Blog posts

Learn the terms

General Data Protection Regulation

Latest papers