SQL Server 2008 Compliance Guide (Sarbanes, Hippa)

Compliancy requirements are a real issue for today?s companies.

If you are publicly traded you fall under Sarbanes Oxley act,(Public Company Accounting Reform and Investor Protection Act of 2002). If you are in healthcare you fall under the healthcare Health Insurance Portability and Accountability Act (HIPPA). If you process credit cards you must meet the requirement of the Payment Card Industry (PCI) Compliance.  New compliancy requirements come up all the time.

Massachusetts just passed a law that could affect your business. This new 201 CMR 17.00: Standards for The Protection of Personal Information of Residents of the Commonwealth comes into effect in 2009.

For example if you are a business in California that takes credit card information on a Massachusetts resident then you must meet the requirement of this new law. 
Joseph J. Laferrera  a lawyer at Gesmer Updegrove LLP Gesmer Updegrove LLP in Boston authored a great whitepaper on this new law.

New Data Security Regulations Have Sweeping
Implications For Massachusetts Businesses

SQL Server 2008 Compliance Guide

Microsoft has published a SQL Server 2008 Compliance guide to help you.

Brief Description

This paper provides an overview of how to approach compliance for the management of the SQL Server database. It describes the compliance-related features of SQL Server 2008 and how to apply them to IT controls. This paper includes tips and scripts to help jump-start compliance solution development.


Organizations across the globe are being inundated with regulatory requirements. They also have a strong need to better manage their IT systems to ensure they are operating efficiently and staying secure. Microsoft is often asked to provide guidance and technology to assist organizations struggling with compliance. The SQL Server 2008 Compliance Guidance white paper was written to help organizations and individuals understand how to use the features of the Microsoft? SQL Server? 2008 database software to address their compliance needs. This paper serves as an accompaniment to the SQL Server 2008 compliance software development kit (SDK), which provides sample code and guidance for understanding SQL Server 2008 compliance features and using them for developing solutions.

To Get a copy of the Guide:

SQL Server 2008 compliance Guide


Posted Michael Corey,

Founder & CEO, Ntirety




Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.