Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » ISO 27001 » BCP Testing

BCP Testing

Business Continuity Planning (BCP) is the procedure of creating preventive and recovery systems to counter potential cyber threats to an enterprise or to ensure process continuity in the case of a cyberattack. BCP’s secondary goal is to make sure operational continuity before as well as during the execution of disaster recovery.

The planning entails personnel and asset protection, thus ensuring a swift recovery of operations in the event of an attack or loss of data. In short, the basic business continuity requirement is to keep necessary functions up and running in the event of a disaster and to be able to recover with as little downtime as possible. A business continuity plan also considers various unpredictable events, such as natural disasters, disease outbreaks, fires, cyberattacks, and other external threats.

Additional reading

GRC in cyber security

GRC in Cyber security (Complete Guide)

The debate about digitization being a boon or a bane can be polarizing. Still, we can all agree that it has brought a wave of cyber threats, scams, breaches, and other sophisticated cyber attacks.  The digital landscape shifts like quicksand, which explains why 68% of business owners feel that cybersecurity risks are increasing. Enter Governance,…

Common Control Framework: The Complete Implementation Guide

If you handle sensitive data, you might find yourself in the alphabet soup of regulations – SOC 2, GDPR, HIPAA, NIST, CCPA, ISO, and more. Some mandatory and others voluntary, but complying with multiple frameworks is a lot of work and often spirals into chaos unless you have a methodical approach to systematically manage it…
HIPAA NPP

HIPAA Notice of Privacy Practices (What is it and How to Draft It)

Ensuring your clients’ information is secure and well-guarded when running a business can sometimes be daunting.  One of the key cornerstones of successfully protecting client information is understanding what the Health Insurance Portability and Accountability Act of 1996 HIPAA Notice of Privacy Practices (NPP) entails.  While the implications may seem overwhelming initially, with the proper…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.