Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » SOC 2 » Confidentiality

Confidentiality

In the context of SOC 2 (Service and Organization Controls), confidentiality refers to the principle that requires organizations to protect the confidentiality of their customer’s data and information. The confidentiality principle is one of five Trust Services Criteria covered in a SOC 2 attestation engagement.

To meet the confidentiality principle, organizations must have controls to ensure that their customers’ data and information are kept confidential and only accessed by authorized individuals. This may include access controls, data encryption, and secure data transmission.

Additional reading

Data Portability Under Article 20 GDPR

TL,DR: GDPR Article 20 grants individuals the right to receive their personal data in a structured, commonly used, and machine-readable format for reuse or direct transfer between controllers Data portability applies only when processing is based on consent or contract performance and carried out by automated means. Manual paper records are excluded from this right…

Risk Assessment Matrix Complete Guide

TL,DR: A risk assessment matrix is a grid categorizing risks by likelihood on one axis and potential impact on the other, producing severity ratings of high, medium, and low to prioritize remediation efforts The matrix transforms arbitrary risks into actionable decisions: which risks to accept, tolerate, mitigate immediately, or combat over time, based on their…

What Is Risk Scoring? How To Score Risk?

Most security programs hit the same wall—risks pile up faster than the resources to fix them. But it gets even worse when “high risk” means five different things to five different stakeholders. Without a shared way to compare one risk to another, prioritization becomes a debate instead of a decision.  Because when there’s a single…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.

Contact sales