Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » GDPR » Privacy By Design

Privacy By Design

Privacy by Design is an approach that was developed to battle the ever-increasing threats to information privacy and security. It implements privacy at the core of engineering and design methodology for any product, service, system, or process. The scope of privacy doesn’t end with design but rather extends throughout the lifecycle of any such product. The Privacy by design framework is based on seven cornerstone principles:


– Being proactive and not reactive
– Keeping privacy as the default setting
– Embedding privacy into design
– Retaining full functionality through positive-sum
– Driving protection throughout the lifecycle
– Respecting user privacy
– Enabling visibility and transparency

Additional reading

[Product Update] Introducing Sprinto AI: Building Towards Autonomous Compliance and Risk Intelligence

Compliance has always been about balance. Organizations must navigate between risk and readiness, growth and governance, speed and security. But as companies scale, maintaining that balance becomes increasingly difficult. Compliance frameworks multiply. Risks evolve overnight. Evidence becomes outdated faster than it can be reviewed. Traditional GRC tools and basic automation simply can’t keep up with…

What Is an Access Review?

November 12, 2021. A former South Georgia Medical Center employee made an unauthorized copy of a patient’s private data before leaving the company. The center had to provide patients with free credit monitoring and identity restoration to compensate for the disgruntled ex-employee’s actions. While this is the case of a malicious insider, there are other…

How to Create an ISO 27001 Remote Working Policy That Passes Audit

Securing endpoints and enforcing consistent policies across a hybrid or remote workforce remains one of the toughest challenges for security and compliance teams. With employees working across varied locations, devices, and networks, the risk surface expands fast, and without clear guardrails, compliance falls apart. Annex A.6.7 of ISO 27001:2022 directly addresses this complexity by requiring…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.

Contact sales