FISMA: Federal Information Security Management Act - Sets standards for federal agencies and contractors regarding information security and data protection
SOX: Sarbanes-Oxley Act - Requires public companies to establish internal controls and procedures for financial reporting, including data backup and recovery
HIPAA: Health Insurance Portability and Accountability Act - Mandates specific requirements for backing up and securing protected health information (PHI)
GLBA: Gramm-Leach-Bliley Act - Requires financial institutions to protect customers' personal financial information with specific security measures
FERPA: Family Educational Rights and Privacy Act - Protects the privacy of student education records and requires appropriate backup and security measures
PCI DSS: Payment Card Industry Data Security Standard - Sets requirements for organizations that handle credit card information, including backup and recovery procedures
NIST SP 800-34: National Institute of Standards and Technology Special Publication - Provides guidelines for contingency planning and system backup procedures
ISO Standards: ISO 27001 and 22301 - International standards for information security management and business continuity management systems
State Breach Laws: Various state-specific requirements for data breach notification and response procedures that affect backup and recovery planning
CCPA: California Consumer Privacy Act - Imposes obligations on businesses regarding the collection, storage, and protection of California residents' personal information
GDPR: General Data Protection Regulation - European Union regulation with specific requirements for data protection and recovery, applicable when handling EU residents' data
SEC Requirements: Securities and Exchange Commission rules for maintaining and protecting financial records and ensuring business continuity
FTC Guidelines: Federal Trade Commission guidelines on data security and consumer protection that influence backup and recovery practices
FFIEC Guidance: Federal Financial Institutions Examination Council guidance for financial institutions regarding IT systems and recovery procedures
FDA Requirements: Food and Drug Administration regulations for pharmaceutical companies regarding data retention and system recovery
FINRA Regulations: Financial Industry Regulatory Authority rules for broker-dealers regarding business continuity and disaster recovery planning
