Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » ISO 27001 » Purpose Limitation

Purpose Limitation

In practice, organizations must:

– Clearly define the purpose of collecting personal data and their intention

– Specify your purposes by complying with documentation obligations;

– Perform transparency obligations to communicate to individuals about your purposes for collecting personal data; and

– Ensure that if you plan to disclose or use personal data for any purpose that is different or additional to the originally specified purpose, the new use should be fair, lawful, and transparent.

Additional reading

Blogs

A Complete Step-By-Step Guide to Getting FISMA Certified

Introduced by the U.S. government in 2022, the Federal Information Security Management Act  (FISMA) aims to protect information security, focusing on “risk-based policy for cost-effective security.”  If you are a federal agency, contractor, or subcontractor looking to be FISMA certified, understanding the process is essential. The official guideline is a lengthy piece of legal jargon…
A Quick Guide to HITRUST Certification
Blogs HIPAA

HITRUST Compliance Certification: 5 Steps to Follow

For companies in healthcare, obtaining a HITRUST(Health Information Trust Alliance) Certification acts as a benchmark to ensure data protection standards. According to a survey by HIMSS, 81 percent of US hospitals and health systems and 83 percent of health plans utilize HITRUST, making it the widely adopted control framework in the healthcare sector. Today, the…
HIPAA Risk Assessment
Blogs HIPAA

How to Perform a HIPAA Risk Assessment to Stay Compliant?

The HHS Office of Civil Rights (OCR) provides direction to healthcare entities to implement safeguards for the privacy and security of patients’ protected health information (ePHI) and ensure HIPAA compliance. However, the first crucial step in this direction is to conduct a HIPAA risk assessment, which identifies critical risks and security loopholes. Risk assessment helps…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.

Contact sales