Compliance Regulations and Guidance Affecting your Industry
Get trained on regulations affecting your industry through online webinars, learn the best practices, and download quality standards, checklists and news articles. Listen to experts on best practices to streamline quality and compliance processes and meet the regulatory demands.Categories
Compliance Trainings
By - Henry Theberge
On Demand Access Anytime
By - Angela Polania
On Demand Access Anytime
By - Angela Polania
On Demand Access Anytime
By - Robert Davis
On Demand Access Anytime
FDIC Guidance on Safeguarding Customers Against E-Mail and Internet-Related Fraudulent Schemes
- Industry: Banking and Financial Services
The Federal Deposit Insurance Corporation has issued guidance on safeguarding customers against E-mail and Internet-Related Fraudulent Schemes.
California Online Privacy Protection Act of 2003
- Industry: IT control and PCI compliance
The California Online Privacy Protection Act of 2003 or OPPA, which became effective on July 1, 2004, was the first state law that required owners of commercial websites or online services to post a privacy policy.
Payment Card Industry - Digital Security Standards Version 2.0
- Industry: IT control and PCI compliance
The Payment Card Industry (PCI) Data Security Standard (DSS) was developed to encourage and enhance cardholder security and facilitate broad adoption of consistent data security measures globally.
The PCI DSS provides a baseline of technical and operational requirements designed to protect cardholder data.
General Principles of Software Validation; Final Guidance for Industry and FDA Staff
- Industry: Medical Devices
This guidance outlines general validation principles that the Food and Drug Administration (FDA) considers to be applicable to the validation of medical device software or the validation of software used to design, develop, or manufacture medical devices. This final guidance document, Version 2.0, supersedes the draft document, General Principles of Software Validation, Version 1.1, dated June 9, 1997.
This guidance applies to:
- Software used as a component, part, or accessory of a medical device;
- Software that is itself a medical device (e.g., blood establishment software);
- Software used in the production of a device (e.g., programmable logic controllers in manufacturing equipment); and
- Software used in implementation of the device manufacturer's quality system (e.g., software that records and maintains the device history record).
NERC Standard CIP-003-1 - Cyber Security - Security Management Controls
- Industry: IT control and PCI compliance
NERC Standard BAL-005-0.1b - Automatic Generation Control
- Industry: IT control and PCI compliance
This standard establishes requirements for Balancing Authority Automatic Generation Control (AGC) necessary to calculate Area Control Error (ACE) and to routinely deploy the Regulating Reserve. The standard also ensures that all facilities and load electrically synchronized to the Interconnection are included within the metered boundary of a Balancing Area so that balancing of resources and demand can be achieved
Introduction and PCI Data Security Standard Overview
- Industry: IT control and PCI compliance
The Payment Card Industry (PCI) Data Security Standard (DSS) was developed to encourage and enhance cardholder data security and facilitate the broad adoption of consistent data security measures globally. This document, PCI Data Security Standard Requirements and Security Assessment Procedures, uses as its foundation the 12 PCI DSS requirements, and combines them with corresponding testing procedures into a security assessment tool. It is designed for use by assessors conducting onsite reviews for merchants and service providers who must validate compliance with the PCI DSS. Below is a high-level overview of the 12 PCI DSS requirements. The next several pages provide background about preparing for, conducting, and reporting a PCI DSS assessment, whereas the Detailed PCI DSS Requirements begin on page 13.
