Legislation Resources How they effect your bussiness.
- American Express Data Security Standard
- California Senate Bill No. 1386
Aplies to any business that has customers in California, and also holds any sensitive information on those customers. In the event of a security breach, such companies are required to disclose to their California customers the fact that there was a breach. The impact of this can be devastating to a companies reputation and can also cause a great financial burden to comply.
- Financial Services (GLBA)
This act places tight regulations on the disclosure of sensitive customer information. It also requires companies to provide notices of policies to their customers.
- Healthcare Services (HIPAA)
With relation to the healthcare and insurance industries, HIPAA sets rigid guidelines for the handling and sanitization of patient and client information.
- Sarbanes–Oxley Act
Sets up and enforces regulations on the access of sensetive information. Identity Management is a major driver for the act, and, when implemented properly, can help meet the regulations set forth.
- Visa Cardholder Information Security Program
Compliance with VISA calls for adherence to the twelve point PCI Data Security Standard. This standard sets a framework which safeguards the access, transmission, storage and integrity of cardholder data.
- Canada’s Personal Information Act (PIPEDA)
Regulates the collection and transmission of personal information in Canada.
- The EU Data Privacy Directive
Regulates the collection and transmission of personal information in the European Union.
- Safe Harbor
An agreement of legislation between the United States and the European Union that streamlines the regulations for the handling of private information between the two countries.