Ensuring regulatory compliance can be a complicated and confusing process. Stronger International’s compliance team offers regulation specific audits, compliance requirement training, assistance in policy and governance for specific compliance protocols including:
HIPAA compliance revolves around protecting the privacy and security of Protected Health Information (PHI or ePHI) that your organization has or will have access to. PHI is any information that can be connected to an individual’s health condition. Individual practitioners and organizations must comply with HIPAA regulations.
Stronger provides a full suite of consulting in HIPAA compliance. Let us help you navigate the complexity of HIPAA requirements. We train both management and general employee levels.
The Payment Card Industry Data Security Standard (PCI DSS) applies to companies of any size that accept credit card payments. If your company accepts card payments, stores card data, or you process and transmit cardholder data, you need to host your data securely with a PCI compliant hosting provider. Stronger can help you navigate training needs based on the roles your employees play – whether it’s swiping the card or managing data in your backend databases.
The Gramm-Leach-Bliley Act is a federal law to control the ways that financial institutions deal with the private information of individuals. But anyone who deals with credit or personal financial information is required to be compliant. GLBA requires many companies to give consumers privacy notices that explain the institutions’ information-sharing practices. Do your privacy notices give a clear, conspicuous, and accurate statement of the company’s practices? The Safeguards Rule requires financial institutions to secure customer records and information. But the law defines “financial institution” broadly to cover many businesses.
The Sarbanes-Oxley Act (SOX) enacted July 30, 2002 requires that all publicly held companies must establish internal controls and procedures for financial reporting to reduce the possibility of corporate fraud. This U.S. Federal law reaches to privately held companies as well and includes eleven sections that talk about corporate auditing, accountability and transparency. The regulations can include stiff criminal penalties when proper accounting and disclosure practices are not followed.
The Family Educational Rights and Privacy Act (FERPA) is a Federal law that protects the privacy of student education records. The law applies to all schools that receive funds under an applicable program of the U.S. Department of Education. The regulations help ensure the privacy of records held by a school and the rights and responsibilities of parents, students and school officials. Regular trainings about the details of FERPA are required to be in compliance with the regulation.