Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » SOC 2 » SOC 2 Section 3

SOC 2 Section 3

SOC 2 Section 3, also known as the “system description,” is a requirement of the SOC 2 standard. The system description, which is included in Section III of a SOC 2 report, provides important details about the personnel, processes, and technology that support your product or service.

It is a summary of your organization and its systems. It should also include information on how the organization’s systems are monitored and tested, as well as any third-party service providers that are used to support the organization’s systems.

Additional reading

drata vs secureframe
Blogs Cybersecurity

Drata VS Secureframe: Compare All Differences 

While both, Drata and Secureframe are capable GRC automation tools, the nuanced differences in pricing, AI and automation capabilities, and support can make all the difference for your team.  In this blog, we dive deep into the capabilities of the platforms and compare them against 10 key areas to conclude which platform is better suited…
HITRUST Controls
Blogs HITRUST

What are HITRUST Controls List & Requirements?

HITRUST is widely recognized as a go-to framework by experts. It’s known to be one of the most comprehensive frameworks in structure, comprising 14 Control Categories, 19 Domains, 49 Control Objectives, 156 Control References, and 3 Implementation Levels. With such complexity, achieving compliance with HITRUST is no small feat. In this article, we’ll explore the…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.

Contact sales