Match the following laws or industry standards to their description: GLBA, PCI DSS, HIPAA, SOX

GLBA: An industry standard that covers organizations that handle payment cards; PCI DSS: A U.S. law that requires covered financial institutions to provide their customers with a privacy notice on a yearly basis; HIPAA: A U.S. law that requires internal controls assessments, including IT transaction flows for publicly traded companies; SOX: A U.S. law that provides data privacy and security requirements for medical information

GLBA: A U.S. law that provides data privacy and security requirements for medical information; PCI DSS: A U.S. law that requires internal controls assessments, including IT transaction flows for publicly traded companies; HIPAA: A U.S. law that requires covered financial institutions to provide their customers with a privacy notice on a yearly basis; SOX: An industry standard that covers organizations that handle payment cards

GLBA: A U.S. law that requires internal controls assessments, including IT transaction flows for publicly traded companies; PCI DSS: A U.S. law that provides data privacy and security requirements for medical information; HIPAA: An industry standard that covers organizations that handle payment cards; SOX: A U.S. law that requires covered financial institutions to provide their customers with a privacy notice on a yearly basis