Blog Compliance
Healthcare Vendors Sharing PHI with Facebook: Analysis & Recommendations
Read Protected Health Information (PHI)7 Minute Read
The Ultimate TPRM & Cyber Risk Glossary
When in doubt, use an acronym.
Whether you’re a seasoned healthcare CISO or you’re new to the industry and convinced people are just making up acronyms—this glossary has you covered. From standard industry frameworks to CORL-specific terms, it’s your Rosetta Stone for healthcare TPRM, cyber risk, and compliance.
Understanding Protected Health Information (PHI)
Protected Health Information (PHI) refers to any individually identifiable health data that is collected, stored, or transmitted by healthcare organizations and their vendors. PHI includes medical records, treatment histories, insurance information, and any other data that could be used to identify a patient. Under laws and regulatory guidances like HIPAA, organizations must take stringent measures to safeguard PHI.
CORL plays a critical role in helping healthcare organizations manage vendor relationships to ensure that PHI is protected from unauthorized access or breaches.