Glossary of Compliance
Compliance Glossary
Our list of curated compliance glossary offers everything you to know about compliance in one place.
BAA
A Business Associate Agreement (BAA) is a signed agreement between covered entities and business associates. HIPAA privacy rule mandates that covered entities who share PHI with third party service providers specify the responsibilities of each party to secure PHI.
A BAA must describe the permitted rules to use or disclose PHI and require the business associate to implement appropriate safeguard to maintain the security of PHI.
Additional reading
Ultimate Guide to GRC (Governance, Risk, and Compliance)
Co-ordinating people, processes, and technology while managing risks and staying compliant is easier said than done. Businesses often struggle to keep up with an increasingly fast-paced environment that leaves no room for strategic error. Poor processes affect functions across the organization and ultimately affect the bottom line. GRC compliance emerged to fill this gap and…
2025 Wrap-up: What’s New at Sprinto
2025 was a pivotal year in the Governance, Risk, and Compliance (GRC) landscape. Last year, Compliance evolved from checklists to intelligent orchestration due to an unprecedented need for real-time risk visibility, automation, and strategic resilience. As regulatory complexity, cybersecurity threats, and ESG expectations surged in 2025, organizations turned to AI-native platforms for continuous compliance, evidence…
IT GRC Tools: Complete Guide to Governance, Risk, and Compliance
Most businesses end up adopting IT GRC tools after they’ve seen what happens without it. Every new vendor integration, every new cloud deployment, exposes you to new risks and vulnerabilities. The old way of managing risk is built for a slower world. At first, it’s manageable, with a few spreadsheets here and a few docs…
Sprinto: Your growth superpower
Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.
