The list of regulations regarding data security is virtually endless, and many of them are focused on specific industries. However, there are some which are more common for companies to deal with. Here are a few of the more commonly encountered security and privacy regulations:
It’s not uncommon for a business to fall under the purview of multiple security regulations. A good example would be holders of Health Savings Accounts (HSAs), who must comply with HIPAA, GLBA and SOX. On top of that, it’s rare that all regulations will apply to all customers of an organization. Sometimes companies will attempt to juggle multiple regulations at the client level, making privacy management even more challenging, but usually an organization will simply apply the most stringent requirements to all of their customers.
In addition, there are a number of security frameworks that an organization’s business customers may expect their vendors to be compliant with—these are but a few of them: