Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » PCI DSS » CSRF

CSRF

Cross-Site Request Forgery (CSRF) is a security vulnerability that allows a cyber threat actor to perform actions on behalf of the user without their knowledge or consent. The CSRF attack occurs when the user clicks on a malicious link or visits a malicious website. This action makes the user’s browser send requests to legitimate websites where the user is logged in. These requests are generally actions such as deleting data, making purchases, changing passwords, sending messages, and so on. As the request comes from the user’s browser, it is considered legitimate, allowing the cybercriminals to perform unauthorized actions.

Additional reading

How to Get ISO 27001 For Startups (Free Guide)

ISO 27001 is not an easy framework to understand, especially for startups new to compliance. It is not quite straightforward and does not provide checklists and examples to make your job easy. But without ISO 27001, startups lose out on a ton of growth opportunities.  To address this, we’ve drafted this article to bridge the…

GRC System: Definition, Core Functions & How to Implement

A GRC system helps companies stay audit-ready, automate evidence gathering, and obtain real-time risk visibility across departments and vendors by centralizing governance, risk, and compliance procedures. Without one, compliance issues often surface during audits when flaws in the governance process or vendor oversight are found. Studies say companies that use manual processes are more likely…

SOC 2 Compliance: A Complete Guide for 2026

Quick summary Steps to compliance: SOC 2 compliance is a thorough standard—auditors ask tough questions and expect verifiable proof such as policies, screenshots, logs, or attestations. If you miss these, you risk piling up audit exceptions, which can damage customer trust. In this guide, we explain SOC 2, why it matters, and how to approach…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.

Contact sales