HITRUST (Health Information Trust Alliance)
HITRUST (Health Information Trust Alliance): A common security framework used in the healthcare industry to ensure the privacy and security of electronic protected health information (ePHI). It is used by healthcare organizations to assess and mitigate risks to ePHI and to meet regulatory requirements. Examples of organizations using HITRUST include hospitals, clinics, and insurance companies.
General Data Protection Regulation (GDPR)
General Data Protection Regulation (GDPR): A set of regulations governing the protection and processing of personal data in the European Union. It is used to ensure that individuals have control over their personal data and that companies handle it responsibly. Examples of GDPR compliance include obtaining consent from individuals before collecting their data and providing […]
Governance framework
Governance framework: A set of guidelines and principles for governing an organization. It is used to provide a consistent and structured approach to governance. Examples of a governance framework include the COBIT framework for IT governance and the ISO 27001 standard for information security management.
Governance of Enterprise IT (GEIT)
Governance of Enterprise IT (GEIT): The process of managing and directing the use of IT resources within an organization to achieve its goals and objectives. It is used to ensure that IT systems are aligned with the organization’s strategic objectives and operate efficiently and securely. Examples of governance of enterprise IT include establishing IT policies […]
Governance, Risk Management and Compliance (GRC)
Governance, Risk Management and Compliance (GRC): A framework for managing an organization’s governance, risk, and compliance activities. It is used to ensure that an organization operates efficiently and effectively while mitigating potential risks and complying with regulations. Examples of GRC include implementing a risk management program, conducting compliance audits, and developing a governance framework.
Governance/management practice
Governance/management practice: The processes and procedures used to manage and direct an organization. It is used to ensure that an organization operates efficiently and effectively. Examples of governance/management practices include setting policies and procedures, monitoring compliance, and making strategic decisions.