Solutions Specific Regulations
Hitachi ID Facebook Page Hitachi ID Twitter Page Find us on Google+ Hitachi ID YouTube Page

Specific Regulations

Sarbanes-Oxley

The Sarbanes-Oxley act was enacted by the United States Congress in July 2002. It requires publicly traded companies to ensure that they are properly reporting financial information. One of the most critical sections is section 404, which requires internal control over the creation of financial reports, and mandates responsibility for access privileges. This section is crucial for IT organizations to understand and act on.

Companies are expected to prove the following to outside auditors:


Download Hitachi ID Systems documents about using the Hitachi ID Identity and Access Management Suite to comply with Sarbanes-Oxley

arrow Hitachi ID Systems whitepaper
arrow Hitachi ID Systems / SOX brochure




PCI-DSS

The Payment Card Industry Data Security Standard (PCI-DSS) is a brief, pragmatic and very reasonable set of standards intended to guide financial institutions, retailers and other data processors in protecting data about credit cards and their owners. This document describes how identity management and access governance products from Hitachi ID Systems can be used to help organizations comply with PCI-DSS.


Download Hitachi ID Systems documents about using the Hitachi ID Identity and Access Management Suite to comply with PCI-DSS

arrow Hitachi ID Systems whitepaper




HIPAA

The Health Insurance Portability and Accountability Act of 1996 (HIPAA) outlines what is required of healthcare organizations to ensure the portability of healthcare coverage and the privacy of patient records. Among other things, HIPAA requires organizations involved in healthcare to:


Download Hitachi ID Systems documents about using the Hitachi ID Identity and Access Management Suite to comply with HIPAA

arrow Hitachi ID Systems whitepaper
arrow Hitachi ID Systems / HIPAA brochure




FDA 21 CFR Part 11

Pharmaceutical and other biotech companies are subject to regulation by the food and drug administration (FDA). One of the FDA regulations, regarding electronic signatures and the integrity of electronic systems, is FDA 21 CFR 11. Requirements of 21 CFR Part 11 include:


Download Hitachi ID Systems documents about using the Hitachi ID Identity and Access Management Suite to comply with 21 CFR Part 11

arrow Hitachi ID Systems whitepaper




GLB - Gramm-Leach-Bliley Act

The Gramm-Leach-Bliley act, signed in 1999, applies to financial institutions and securities firms. It requires them to implement strict regulations to protect the privacy of customer data. These include:


Download Hitachi ID Systems documents about using the Hitachi ID Identity and Access Management Suite to comply with Gramm-Leach-Bliley

arrow Hitachi ID Systems / GLB brochure




PIPEDA

The Canadian Personal Information Protection and Electronics Document Act (PIPEDA), implemented in 2000, is intended to protect personal information collected over the course of conducting commerce electronically. This act governs the collection, use, retention and disclosure of personal information. It stipulates data security and limits use of personal data by corporations. Among other things, PIPEDA requires that organizations: