Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » SOC 2 » Confidentiality

Confidentiality

In the context of SOC 2 (Service and Organization Controls), confidentiality refers to the principle that requires organizations to protect the confidentiality of their customer’s data and information. The confidentiality principle is one of five Trust Services Criteria covered in a SOC 2 attestation engagement.

To meet the confidentiality principle, organizations must have controls to ensure that their customers’ data and information are kept confidential and only accessed by authorized individuals. This may include access controls, data encryption, and secure data transmission.

Additional reading

Compliance Audit: Evaluating Regulatory Compliance Effectively

Negligence in cybersecurity costs more than regulatory fines. It erodes your customer’s trust. This is precisely why most regulatory bodies, such as the International Organization for Standardization (ISO), PCI Security Standards Council (PCI SSC), or General Data Protection Regulation (GDPR), recommend a thorough compliance audit—aptly put, an assessment of your company’s first line of defense. …

CIS vs. NIST: Which Framework is Right For Your Business? 

Designing and managing security architecture is a multifaceted task, and doing so without proper guidance can be challenging. Thankfully, numerous security frameworks are available to provide direction for your business.  Two primary models in cyber security that are generally recognized internationally are CIS (Center for Internet Security) and NIST (National Institute of Standards and Technology)….

A Complete Overview of SaaS Compliance

Businesses today understand the challenges that come with implementing SaaS solutions. The dangers of unmanaged third-party access, data exposure, obsolete security measures, and shadow IT are very real. So the importance of SaaS compliance is underscored by businesses’ need to ensure continuity as well as stay ahead of the curve. But compliance is often easier…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.

Contact sales