��������Ƶ

HIPAA: Health Insurance Portability and Accountability Act - Federal law that protects sensitive patient health information from being disclosed without patient consent

GLBA: Gramm-Leach-Bliley Act - Federal law requiring financial institutions to explain their information-sharing practices and protect sensitive data

FERPA: Family Educational Rights and Privacy Act - Federal law that protects the privacy of student education records

COPPA: Children's Online Privacy Protection Act - Federal law imposing requirements on operators of websites or online services directed to children under 13 years of age

FISMA: Federal Information Security Management Act - Defines framework for protecting government information, operations and assets against threats

CISA: Cybersecurity Information Sharing Act - Promotes sharing of cyber threat information between private sector and government

SOX: Sarbanes-Oxley Act - Requires proper management and storage of corporate electronic records for publicly traded companies

PCI DSS: Payment Card Industry Data Security Standard - Security standards for organizations that handle credit card information

FTC Act: Federal Trade Commission Act - Prohibits unfair or deceptive practices affecting commerce, including data privacy and security practices

ECPA: Electronic Communications Privacy Act - Extends government restrictions on wire taps to include transmitted electronic data

CFAA: Computer Fraud and Abuse Act - Federal law that prohibits accessing a computer without authorization or exceeding authorized access

CCPA: California Consumer Privacy Act - State law providing California residents with rights regarding their personal information

SHIELD Act: New York's Stop Hacks and Improve Electronic Data Security Act - Requires businesses to implement safeguards for private information of NY residents

GDPR Compliance: General Data Protection Regulation considerations when handling EU residents' data, even if organization is US-based

ISO 27001: International standard for information security management systems, providing framework for policies and procedures

NIST Framework: National Institute of Standards and Technology cybersecurity framework providing standards, guidelines, and best practices