Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » SOC 2 » Availability

Availability

In the context of SOC 2 (Service and Organization Controls), availability refers to the principle that requires organizations to have systems and processes in place to ensure that their services are available to their customers as needed. The availability principle is one of five trust services principles that are covered in a SOC 2 attestation engagement.

To meet the availability principle, organizations must have controls in place to ensure that their systems and services are available to their customers on a consistent basis. This may include measures such as redundant systems, failover processes, and disaster recovery planning.

Additional reading

What is Enterprise AI Governance? Frameworks, Risks, and How to Get Started

TL;DR Enterprise AI Governance is the system of policies, controls, and accountability structures that lets large organizations use AI responsibly, at scale, without grinding innovation to a halt. At enterprise scale, governance is far more complex than compliance. You are managing hundreds of AI systems, dozens of vendors, multiple geographies, and a regulatory landscape that…

Top 8 Governance, Risk & Compliance (GRC) Tools: Platforms, Features & How to Choose in 2026

TL;DR GRC tools unify compliance, risk, and governance workflows into a single platform with continuous control monitoring, automated evidence collection, and multi-framework alignment, replacing manual, periodic processes. Choose based on maturity stage:– Sprinto– Drata– Vanta– Secureframe– Delve– Scrut– OneTrust– ServiceNow GRC The real differentiator is depth: strong GRC platforms integrate governance, risk, vendors, controls, and…

How to create ISO 27001 Risk Treatment Plan? (Downloadable template)

Confidentiality, integrity, and availability, collectively known as the CIA triad, form the cornerstones of protecting information within the ISO 27001 framework. When a risk materializes, any or all of these elements can be compromised, leaving assets unprotected and objectives unmet. That is why a risk treatment plan (RTP) is central to ISO 27001. A well-structured…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.

Contact sales