Across
- 1. Review of records, controls, or activities for compliance.
- 3. U.S. law protecting certain health information.
- 6. Education that helps employees meet compliance obligations.
- 10. Obligation to demonstrate compliance with privacy requirements.
- 11. Third party that may handle data or provide services.
- 12. Unauthorized access, loss, disclosure, or alteration of data.
- 14. Protected health information under U.S. healthcare privacy rules.
Down
- 2. Event that may affect confidentiality, integrity, or availability.
- 4. Control used to protect data and reduce risk.
- 5. A clear, informed agreement to data processing.
- 7. Policy for how long records or personal data are kept.
- 8. Technique that protects data by making it unreadable without a key.
- 9. The right to control how personal information is collected and used.
- 13. Possibility of harm, noncompliance, or control failure.
- 14. Information that can identify a person.