From the course: Certified Information Security Manager (CISM) Cert Prep (2022): 1 Information Security Governance

Unlock the full course today

Join today to access over 24,000 courses taught by industry experts.

Data privacy

Data privacy

- [Instructor] All of the stakeholders in a data governance program bear responsibility for protecting the privacy of personal information under their care throughout the information lifecycle. Now this private information may come in many forms. Two of the most common elements of private information are personally identifiable information, or PII, and protected health information, or PHI. PII includes all information that can be tied back to a specific individual, while PHI includes healthcare records that are regulated under the Health Insurance Portability and Accountability Act, HIPAA. The generally accepted privacy principles, or GAPPP, are 10 components of data privacy that can be used to help organizations design their own privacy programs. The GAPPP principles were developed through a collaboration between four major industry organizations. The American Institute of Certified Public Accountants, the Canadian Institute…
