Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » Generic » Cybersecurity – Shared Responsibility

Cybersecurity – Shared Responsibility

The cybersecurity shared responsibility model plays a great role in mitigating the various aspects of the cloud environment. 

For example, in a shared security model with GCP, Google will be responsible for ensuring that their firewalls remain impenetrable, and you, as a google cloud user, will be responsible for ensuring that you have implemented MFA, used a strong password, and don’t access your business environment that’s hosted on  GCP from open public networks. Google is responsible for guarding the cloud service, while you are responsible for guarding your own account in the cloud service.

Moreover, cybersecurity is a responsibility we all share, and each person plays a role in protecting themselves and others. Just one infected computer can spread malware to countless others. To enhance your safety online, you’ve got to follow some basic cybersecurity measures.

Best practices to ensure your online safety

  • Avoid opening suspicious-looking emails or attachments.
  • Create strong passwords and avoid sharing them with anyone.
  • Keep your operating system, browser, and critical software updated by installing updates regularly.
  • Be cautious about sharing personal information online, and use privacy settings to control the information you share.

Additional reading

Hipaa compliance for software

HIPAA Compliance for Software – How to Get Compliant Certification

The Health Insurance Portability and Accountability Act (HIPAA) is a US federal law that mandates healthcare organizations, including their vendors, with access to PHI to implement standard best practices to protect patient data (such as medical records) and other personal health information.  This law extends to cloud-hosted tech firms that use software applications to process…
SOC 2 evidence

Proving Compliance: Why SOC 2 Evidence Collection Matters

Years ago, collecting evidence was a walk in the park. But we can’t say the same now as most of the data is stored on the cloud. Not to mention the tedious effort involved; almost all application is constantly exposed to risk consistently. A need to secure sensitive information and demonstrate it to present a…
CCPA Requirements

CCPA Compliance Requirements : Guide to California’s Data Privacy Law

GDPR was the first compliance law that mandated businesses to adopt processes and policies that aimed to protect the rights of users and ensure the integrity of their personal data. After GDPR, California’s CCPA was able to mandate businesses to adhere to its privacy law at scale.  CCPA – California Consumer Privacy Act is a…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.