- The international trade association for companies providing information destruction services.
- A part of the Fair and Accurate Credit Transactions Act of 2003 (FACTA), which calls for the proper disposal of information in consumer reports and records to protect against “unauthorized access to or use of the information.
- The final rules on identity theft “red flags” and address discrepancies in FACTA. The final rules implement sections 114 and 315 of the Fair and Accurate Credit Transactions Act of 2003.
- The HIPAA Privacy Rule provides federal protections for individually identifiable health information held by covered entities and their business associates and gives patients an array of rights with respect to that information.
- The HITECH Act addresses the privacy and security concerns associated with the electronic transmission of health information, in part, through several provisions that strengthen the civil and criminal enforcement of the HIPAA rules.
- HB 300 offers more stringent protections for protected health information (PHI) than its federal counterparts, HIPAA and the HITECH Act. Among other things, HB 300 mandates employee training on state and federal laws regarding PHI that is tailored to each employee’s scope of employment. It also puts in place new requirements for notices to patients regarding electronic disclosure of PHI.
- The Gramm-Leach-Bliley Act requires financial institutions – companies that offer consumers financial products or services like loans, financial or investment advice, or insurance – to explain their information-sharing practices to their customers and to safeguard sensitive data.