Appendix B Data Privacy & Security Regulations

Listed here are only a few of the major data security and privacy regulations that could globally impact data providers and subscribers.

  • Health Insurance Portability and Accountability Act (HIPAA) 1996 places liability on the healthcare organizations who fail to protect the privacy of patient health information, including bills and health related financial information. The Administrative Simplification provisions in HIPAA requires the establishment of national standards for electronic health care transactions and national identifiers for data related to providers, health insurance plans, and employers.
  • Gramm-Leach-Bliley Financial Modernization Act of 1999 (GLBA) mandates protection of personal financial information through several data protection measures. It is a landmark act in the area of consumer rights on data privacy dictating how financial institutions can preserve the security and confidentiality of personal and financial data of consumers.
  • Health Information Technology for Economic and Clinical Health Act (HITECH Act) 2009 addresses the privacy and security concerns associated with the electronic transmission of health information. Subtitle D of the HITECH Act requires HIPAA covered entities (providers, insurance, etc.) to report data breaches affecting 500 or more individuals to U.S. agencies and the media, in addition to notifying the affected individuals.
  • Sarbanes Oxley Act (SOX) 2002 requires executives of U.S. corporations ...

Get Data as a Service: A Framework for Providing Reusable Enterprise Data Services now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.