Regulatory Compliance in Data Management
Regulatory compliance in data management refers to information access, processing, and storage mechanisms designed in accordance to regulations. For example, in the United States, health-related data falls under the purview of the Health Insurance Portability and Accountability Act (HIPAA). Any associated healthcare data management systems need to be compliant with HIPAA requirements, including provision of data confidentiality and retention assurances. Such compliance has potential for far-reaching impact in the design of data processing systems.
In recent times, the increasing collection and processing of data have raised several concerns regarding data confidentiality, access, and retention. Driven by the concerns, regulators have enacted laws that govern all facets of data management. In the United States alone, over 10,000 regulations can be found in financial, life sciences, healthcare, and government sectors, including the Gramm-Leach-Bliley Act,...
- 1.Bajaj S, Sion R. Trusteddb: a trusted hardware based database with privacy and data confidentiality. In: Proceedings of the ACM SIGMOD International Conference on Management of Data; 2011. p. 205–16.Google Scholar
- 3.Bajaj S, Sion R. HIFS: history independence for file systems. In: Proceedings of the 20th ACM Conference on Computer and Communications Security; 2013.Google Scholar
- 4.Benjamin CM, Fung KW, Chen R, Yu PS. Privacy-preserving data publishing: a survey of recent developments. ACM Comput Surv. 2010;42(4): 14:1–53.Google Scholar
- 7.EMC. Centera compliance edition plus. http://www. emc.com/data-protection/centera/compliance-edition- plus.htm.
- 11.IBM. IBM system storage n series with open system snapvault. http://www-03.ibm.com/systems/storage/network/software/.
- 12.IBM 4764 PCI-X Cryptographic Coprocessor. Online at http://www-03.ibm.com/security/cryptocards/pcixcc/order4764.shtml.
- 14.Network Appliance Inc. Snaplock compliance and snaplock enterprise software. http://www.netapp.com/ us/products/protection-software/snaplock.aspx.
- 15.Oracle. Storagetek 5320 nas appliance. http://docs.oracle.com/cd/E19783-01/index.html.
- 16.Quantum Inc. Dltsage: Write once read many solution. http://www.quantum.com/products/tapedrives/dlt/dltsageworm/index.aspx.
- 18.Zhu Q, Hsu WW. Fossilized index: the linchpin of trustworthy non-alterable electronic records. In: Proceedings of the ACM SIGMOD International Conference on Management of Data; 2005. p. 395–406.Google Scholar