====== Appendix L: Governance, Regulation and Compliance ====== [[dido:public:ra | Return to Reference Architecture (RA)]] or [[dido:public:ra:xapend | Return to Appendices]] [[dido:public:ra:xapend:xapend.a_glossary:g:governance]] and [[dido:public:ra:xapend:xapend.a_glossary:r:regulatory_compliance| Regulation]] are key to a successful distributed system. **Governance** is the system by which entities are directed and controlled. It is concerned with structure and processes for decision-making, accountability, control and behavior at the top of an entity. Governance influences how an organization’s objectives are set and achieved, how risk is monitored and addressed and how performance is optimized”. **Regulatory Compliance** is an organization's adherence to laws, regulations, guidelines, and specifications relevant to its business processes. Violations of regulatory compliance often result in legal punishment, including federal fines. Examples of regulatory compliance laws and regulations include the [[dido:public:ra:xapend:xapend.a_glossary:d:dodd_frank]], [[dido:public:ra:xapend:xapend.a_glossary:p:pci_dss ]], [[dido:public:ra:xapend:xapend.a_glossary:h:hippa]], [[dido:public:ra:xapend:xapend.a_glossary:e:e_gov_act]], [[dido:public:ra:xapend:xapend.a_glossary:f:fisma]], [[dido:public:ra:xapend:xapend.a_glossary:c:cipsea]], [[dido:public:ra:xapend:xapend.a_glossary:s:sarbanes-oxley_act]], EU's [[dido:public:ra:xapend:xapend.a_glossary:g:dgpr]] [[dido:public:ra:xapend:xapend.a_glossary:c:ccpa]], [[dido:public:ra:xapend:xapend.a_glossary:d:dpa]], and the [[dido:public:ra:xapend:xapend.a_glossary:d:drp]] * /**=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- /* To add a discussion page to this page, comment out the line that says ~~DISCUSSION:off~~ */ ~~DISCUSSION:on|Outstanding Issues~~ ~~DISCUSSION:off~~