Compliance Glossary

Americans with Disabilities Act. A civil rights law that prohibits discrimination based on disability.

California Consumer Privacy Act. A state statute intended to enhance privacy rights and consumer protection for residents of California.

Equal Employment Opportunity. Principles and policies that ensure all employees and job applicants are treated fairly and without discrimination based on race, color, religion, sex, national origin, age, disability, or genetic information.

Environmental Protection Agency. An independent executive agency of the United States federal government tasked with environmental protection matters.

Food and Drug Administration. A federal agency of the Department of Health and Human Services responsible for protecting and promoting public health through the control and supervision of food safety, tobacco products, dietary supplements, prescription and over-the-counter pharmaceutical drugs, vaccines, biopharmaceuticals, blood transfusions, medical devices, electromagnetic radiation emitting devices, cosmetics, animal foods & feed and veterinary products.

Family Educational Rights and Privacy Act. A Federal law that protects the privacy of student education records. The law applies to all schools that receive funds under an applicable program of the U.S. Department of Education.

Family and Medical Leave Act. A United States labor law requiring covered employers to provide employees with job-protected and unpaid leave for qualified medical and family reasons.

General Data Protection Regulation. A regulation in EU law on data protection and privacy in the European Union and the European Economic Area. It also addresses the transfer of personal data outside the EU and EEA areas.

Hazard Analysis Critical Control Point. A management system in which food safety is addressed through the analysis and control of biological, chemical, and physical hazards from raw material production, procurement and handling, to manufacturing, distribution and consumption of the finished product.

Health Insurance Portability and Accountability Act. A US law designed to provide privacy standards to protect patients' medical records and other health information provided to health plans, doctors, hospitals and other health care providers.

An international standard on how to manage information security. The standard details requirements for establishing, implementing, maintaining and continually improving an information security management system (ISMS).

Occupational Safety and Health Administration. A federal agency that ensures safe and healthy working conditions by setting and enforcing standards and by providing training, outreach, education, and assistance.

Payment Card Industry Data Security Standard. An information security standard for organizations that handle branded credit cards from the major card schemes.

Service Organization Control 2. A voluntary compliance standard for service organizations, developed by the American Institute of CPAs (AICPA), which specifies how organizations should manage customer data.

A federal civil rights law in the United States that was passed as part of the Education Amendments of 1972. It prohibits sex-based discrimination in any school or other education program that receives funding from the federal government.