Data privacy

LSSEC02: How do you determine and enforce data privacy requirements?

Data privacy requirements vary across the globe. For example, in the US, the handling of protected health information (PHI) is governed by HIPAA. In the EU, GDPR, Clinical Trial Regulations, and others may apply.

Best practices

LSSEC02-BP01 Determine applicable regulatory frameworks and enforce data privacy requirements by implementing controls

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

LSSEC01-BP03 Set up alerts for IAM configuration changes and perform audits

LSSEC02-BP01 Determine applicable regulatory frameworks and enforce data privacy requirements by implementing controls