Search across regulations.
Find answers, not just results.

Powered by Scolta Semantic search across GDPR, HIPAA, CCPA, SOX, PCI-DSS, FERPA, ADA, and FedRAMP

Popular: we got hacked, what do we do can we email customers in Europe someone asked us to delete their data student data in the cloud audit is next month board wants to know our cyber risk credit card data on our servers is our website accessible enough

Browse by Regulation

GDPR
General Data Protection Regulation
EU data protection and privacy regulation covering personal data rights and obligations for controllers and processors.
European Union
HIPAA
Health Insurance Portability and Accountability Act
US federal law governing the privacy and security of protected health information in healthcare.
US Federal
CCPA/CPRA
California Consumer Privacy Act
California state law giving consumers rights over personal information collected by businesses.
California
SOX
Sarbanes-Oxley Act
US law establishing requirements for financial record keeping and reporting for public companies.
US Federal
PCI-DSS
Payment Card Industry Data Security Standard
Security standards for organizations that handle credit card and payment card information.
Industry
FERPA
Family Educational Rights and Privacy Act
Federal law protecting the privacy of student education records at institutions receiving federal funding.
US Federal
ADA / 508
Americans with Disabilities Act / Section 508
Requirements for digital accessibility ensuring people with disabilities can access electronic content.
US Federal
FedRAMP
Federal Risk and Authorization Management Program
Government-wide cloud security program for federal agency use of cloud products and services.
US Federal

Browse by Role

Legal & Compliance
Regulatory obligations, consent frameworks, data subject rights, enforcement risk
🔐
IT & Security
Technical controls, encryption requirements, audit logging, incident response, vendor risk
📊
Executive & Board
Board reporting, cyber risk disclosure, financial penalties, reputation risk, audit readiness

Recent Enforcement Actions

View all →
Organization Regulation Enforcement Body Penalty Date
Meta Platforms, Inc. GDPR Irish DPC / EDPB €1.2B 2023-05-22
Advocate Aurora Health HIPAA HHS OCR $3.0M 2023-11-14
Sephora CCPA CA Attorney General $1.2M 2022-08-24
Dish Network SOX SEC $1.0M 2023-10-04
Varsity Brands / BSN Sports PCI-DSS Card Networks N/A 2023-07-11