Fill This Form To Receive Instant Help

Help in Homework
trustpilot ratings
google ratings


Homework answers / question archive / Corporations have to be in compliance with the laws, regulations, and standards that govern their business

Corporations have to be in compliance with the laws, regulations, and standards that govern their business

Business

Corporations have to be in compliance with the laws, regulations, and standards that govern their business. For example, educational institutions have to be in compliance with FERPA; health organizations have to be in compliance with HIPAA; and professionals that develop information security programs have to consider a range of information security laws (Sarbanes-Oxley Act, Gramm-Leach-Bliley Act).

Research the laws, standards, policies, and regulations that you might need to be in compliance if you were developing your project for a real-world scenario.

In your initial post, explain these and provide links to websites that provide information on them. Also describe any security requirements that are relevant and should be addressed in the project design.

Then, review the laws, standards, policies, regulations, and security concerns shared by your classmates. Were there any that you felt that they left out? Were there any that they shared that you should consider for your own project?

Peer Review #1

 

Vishnu Persaud posted

Hi Class

The Air Quality Monitoring project will need to ensure that users' personal data is protected and kept private. The web interface component is also accessible for even people with disabilities. There 2 regulatory measures come to mind that is aligned with this project. Here are the following:

  • The Privacy of Act of 1974 requires that the system prohibits disclosure of an individual's records without their consent (Department of Justice, 1974)
  • The web interface will also adhere to the Americans with Disability Act (ADA) which will impact the development of the application abstraction for the end-users (United States Department of Justice Civil Rights Division, 2010)

In addition, to the regulations, there 2 top security measures which will be implemented to ensure that users' data is secure and protect. The first being 2-factor authentication for accessing the web interface, and the second requirement will be periodic penetration testing to identify any vulnerabilities with the existing security measures.

References

Department of Justice. (1974). Privacy Act of 1974. Retrieved from The United States Department of Justice: https://www.justice.gov/opcl/privacy-act-1974#

United States Department of Justice Civil Rights Division. (2010). ADA Standards for Accessible Design. Retrieved from https://www.ada.gov/2010ADAstandards_index.htm

 

Peer Review #2

LaShaye Sykes posted

 

Hello Future Graduates,

Since my project has to do with the medical and the patient population (COVID stats tracking), if I were developing it for the real world I would need to be in compliance with

HIPPA

"The Health Insurance Portability and Accountability Act of 1996 (HIPAA) is a federal law that required the creation of national standards to protect sensitive patient health information from being disclosed without the patient’s consent or knowledge" (Health insurance portability and Accountability act of 1996 (HIPAA) 2018).

Hippa Privacy rule

"The Privacy Rule standards address the use and disclosure of individuals’ health information (known as “protected health information”) by entities subject to the Privacy Rule. These individuals and organizations are called “covered entities.” The Privacy Rule also contains standards for individuals’ rights to understand and control how their health information is used" (Health insurance portability and Accountability act of 1996 (HIPAA) 2018).

I would need to ensure the app has encryption, the user entity type is covered, and that the app is limited with what it can provide for PHI. Although the app would not share identifying patient information, it will be synced with the CDC and other governmental entities and we do not want that information hacked.

The US mobile privacy framework is built around best practices. "US regulators have made it clear that app developers are primarily responsible for providing protections and transparency regarding the use of data" (Mobile privacy in the US 2020).

Option 1

Low Cost Option
Download this past answer in few clicks

12.89 USD

PURCHASE SOLUTION

Already member?


Option 2

Custom new solution created by our subject matter experts

GET A QUOTE

Related Questions