A Fair Processing Notice: A notice given to individuals when the Entity gathers their PHI. The notice explains how their data will be used, how they can exercise their legal rights over their data and provides a link to the full privacy policy.

Assets: are economic resources. It is anything tangible or intangible that is capable of must being owned/controlled to produce or to have positive economic value.

Classified information assets: information assets/material or data that an Entity claims as sensitive, secret, or confidential that requires protection of its confidentiality, integrity, or availability. Access to this information is restricted to people, process or other parties.

Compliance: is the act of adhering to, and demonstrating adherence to, a standard or regulation (international or internal).

Confidentiality: Part of the information security triad, confidentiality means the information is not made available or disclosed to unauthorized individuals, entities, or processes.