Frameworks

Privacy framework

GDPR

The General Data Protection Regulation (GDPR) is a comprehensive privacy law enacted by the European Union to safeguard the personal data of its citizens.

HIPAA

The Health Insurance Portability and Accountability Act (HIPAA) is a U.S. law designed to safeguard the privacy and security of protected health information (PHI).

HITRUST

The Health Information Trust Alliance (HITRUST) developed the Common Security Framework (CSF) to provide organizations with a comprehensive, flexible, and efficient approach to regulatory compliance and risk management.

ISO 27701

ISO/IEC 27701, published in 2019, extends ISO/IEC 27001 and ISO/IEC 27002 standards to include privacy management—specifically, how organizations should manage personal data.

PIPEDA

The Personal Information Protection and Electronic Documents Act (PIPEDA) sets the ground rules for how businesses must handle personal information in Canada.

New insights

Multi-Agent: The Next Frontier in AI for GRC

The Secret to CMMC Readiness Without Hiring an Army

Customer stories

How Larky Achieved SOC 2 Compliance with Trustero AI

Latest Articles

AI Policy Design Assessment

New Dashboards for Operating Effectiveness

Upcoming Event