Glossary of Compliance
Compliance Glossary
Our list of curated compliance glossary offers everything you to know about compliance in one place.
Data Processor
Data Processor is an individual, organization, government entity or any other group that collects, processes and uses data on behalf of a controller.
Additional reading
Standard Contractual Clauses: A Guide for International Data Transfers
Data is sensitive, and ensuring the integrity and security of the personal data of the citizens of the European Union (EU) is one of the key objectives of the General Data Protection Regulation(GDPR). The GDPR law aims to protect the interests of data within and outside the boundaries of the EU. How does it do…
How to conduct a user access review?
On May 2023, a disgruntled Tesla ex-employee used his privileges as a service technician to gain access to data of 75,735 employees, including personal details and financial information. The breach attracted a $3.3 billion fine under GDPR. While breaches due to external and unknown factors are not under an organization’s control, such incidents can be…
How to create ISO 27001 Risk Treatment Plan? (Downloadable template)
Confidentiality, integrity, and availability, collectively known as the CIA triad, form the cornerstones of protecting information within the ISO 27001 framework. When a risk materializes, any or all of these elements can be compromised, leaving assets unprotected and objectives unmet. That is why a risk treatment plan (RTP) is central to ISO 27001. A well-structured…
Sprinto: Your growth superpower
Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.
