Data Protection Regulations

"European Union Data Protection Directive"
"Health Insurance Portability & Accountability Act (HIPAA)"
"Title 21 Code of Federal Regulations (21 CFR 11)"
"Sarbanes-Oxley Act"

21 CFR 11
PGP Universal™ is a comprehensive solution for any organization required to comply with Part 11 of Title 21 Code of Federal Regulations (21 CFR 11), which describes the Food and Drug Administration's guidance on Electronic Records and Electronic Signatures.

Read more »

European Union Data Protection Directive
The European Union Data Protection Directive 95/46/EC of 1995 requires that, “Member States shall protect the fundamental rights and freedoms of natural persons, and in particular their right to privacy with respect to the processing of personal data.” The directive requires that E.U. member states (countries) protect the privacy of personal information that is processed using equipment in the member state, whether the processing is done by government agencies, businesses, or other organizations. “Personal data” includes, but is not limited to, name, address, phone numbers, email addresses, ethnicity, religion, gender, sexual orientation, birth dates, employment, and financial account numbers. The responsibility for compliance with the directive rests with the "controller”, which is the person, group of people, public authority, agency, or other body that determines the purposes and means of processing personal data.

Download "European Union Data Protection Directive" [PDF: 870KB]

Health Insurance Portability & Accountability Act (HIPAA)
The Health Insurance Portability and Accountability Act (HIPAA) was passed by Congress in August 1996 and requires the Department of Health and Human Services (HHS) to ensure standardization of electronic patient data, assign unique health identifiers to patients and others, and implement security standards to protect the confidentiality and integrity of all "individually identifiable health information."

Download "Health Insurance Portability & Accountability Act (HIPAA)" [PDF: 2.45MB]

Sarbanes-Oxley Act
The Sarbanes-Oxley Act (sometimes referred to as SOA or "SOX") was passed by Congress in July 2002 to improve regulatory visibility and accountability of public companies. This sweeping legislation was enacted largely due to corporate accounting scandals typified by Arthur Andersen, Enron, and WorldCom. Sarbanes-Oxley, among other things, holds the CEOs and CFOs of public companies personally responsible for misstatements in financial reports.

Download "Sarbanes-Oxley Act" [PDF: 710KB]

Note: You will need to use the latest version of Adobe Reader for your operating system or higher to read the PDF. If you are experiencing problems reading PDFs using Internet Explorer, please read this Adobe Tech Note.