Protected data refers to data regulated by federal, state, and local legislation. These data require specific information security controls because they could be used to identify an individual or are sensitive in nature.
Not sure which regulations apply to your data? Try searching with a key word below (e.g., “financial,” “student,” or “patient.”)
Under the Federal Information Security Modernization Act (FISM) federal agencies and those providing services on their behalf must develop, document, and implement security programs for information technology systems.
The Health Insurance Portability and Accountability Act specifies requirements for the privacy and security of all individually identifiable patient health information in any form or media, whether electronic, paper, or oral.