Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » SOC 2 » Quality Report

Quality Report

A SOC 2 quality report is a document that service organizations use to demonstrate that they have adequate controls, policies, and processes in place to secure customer data. These controls are related to the five trust principles: security, availability, processing integrity, confidentiality, and privacy. Security is the most important and compulsory criterion, while others can be audited for compliance based on business needs. 

The report is provided by a CPA (Certified Public Accountant) firm. There are two types of report – Type 1 and Type 2. A Type 1 report provides a snapshot of the service organization’s controls at a specific point in time. A Type 2 report provides a snapshot of the service organization’s controls over a longer period of time, generally six months or longer.

Additional reading

hipaa violations
Blogs HIPAA

HIPAA Violation: Understanding the Risks and Penalties

If you’re in the healthcare industry, it’s important that you pay attention to the Health Insurance Portability and Accountability Act (HIPAA) because breaking its rules could land you in some serious trouble. You’re looking at hefty fines, at the very least. The more serious cases can lead to prison sentences.  The Department of Health and…
Best audit management software
Blogs Tools

Top Audit Management Software for Streamlined Compliance

Stuck knee deep in multiple spreadsheets, checklists, tools,and auditor back and forth? We’ve all been there, whether you are new to GRC or a veteran, this is almost a rite of passage.  But how do you bring order to the chaos? You need a trusted wingman to guide you through audits and a long term…
Governance roles and responsibilities
Blogs GRC

Complete Guide To Data Governance Roles And Responsibilities

Organizations must comply with various regulations and standards governing data usage, such as GDPR, HIPAA, and others. This is why you need to understand the roles and responsibilities in data governance to help ensure compliance. No one puts the definition of data governance more aptly than Mike Ferguson, Intelligent Business Strategies –  â€œData governance is…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.

Contact sales