Compliance Management Definitions

  • O

    Occupational Safety and Health Administration (OSHA)

    Occupational Safety and Health Administration (OSHA) is a federal organization (part of the Department of Labor) that ensures safe and healthy working conditions for Americans by enforcing standards and providing workplace safety training.

  • Office of Management and Budget (OMB)

    The Office of Management and Budget (OMB) is the business division of the Executive Office of the President of the United States that administers the United States federal budget and oversees the performance of federal agencies.

  • online risk

    Online risk is the vulnerability of an organization's internal resources that arises from the organization using the Internet to conduct business.

  • operational risk

    Operational risk is the prospect of loss resulting from inadequate or failed procedures, systems or policies. 

  • OPSEC (operational security)

    OPSEC (operational security) is an analytical process that identifies assets such as sensitive corporate information or trade secrets, and determines the controls required to protect these assets.

  • P

    PCAOB (Public Company Accounting Oversight Board)

    The Public Company Accounting Oversight Board (PCAOB) is a Congressionally-established nonprofit that assesses audits of public companies in the United States to protect investors' interests.

  • PCI DSS compliance (Payment Card Industry Data Security Standard compliance)

    Payment Card Industry Data Security Standard (PCI DSS) compliance is adherence to the set of policies and procedures developed to protect credit, debit and cash card transactions and prevent the misuse of cardholders' personal information.

  • predictive coding

    Predictive coding software can be used to automate portions of an e-discovery document review. The goal of predictive coding is to reduce the number of irrelevant and non-responsive documents that need to be reviewed manually.

  • privacy compliance

    Privacy compliance is a company's accordance with established personal information protection guidelines, specifications or legislation.

  • privacy impact assessment (PIA)

    A privacy impact assessment (PIA) is an analysis of how an individual's or groups of individuals' personally identifiable information is collected, used, shared and maintained by an organization.

  • privacy plan

    A privacy plan is an organizational directive that outlines how the organization will protect the personal information of its customers and clients. A privacy plan tends to be an internal document, as opposed to a privacy policy, which is an outward-facing description of how an organization collects, processes and uses data.

  • pure risk (absolute risk)

    Pure risk, also called absolute risk, is a category of threat that is beyond human control and has only one possible outcome if it occurs: loss.

  • R

    records management

    Records management (RM) is the administration of records and documented information for the entirety of its lifecycle, which includes creation, maintenance, use, storage, retrieval and disposal.

  • records retention schedule

    A records retention schedule is a policy that depicts how long data items must be kept, as well as the disposal guidelines for these data items.

  • RegTech

    RegTech, or regulatory technology, is a term used to describe technology that is used to help streamline the process of regulatory compliance.

-ADS BY GOOGLE

SearchCIO

SearchHealthIT

SearchCloudComputing

SearchDataCenter

SearchDataManagement

SearchSecurity

Close