Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » SOC 2 » Management Assertion

Management Assertion

A SOC 2 Management Assertion is a statement by a company’s management related to its system undergoing an audit. This statement is concerned with the effectiveness of the company’s internal controls related to security, availability, processing integrity, confidentiality, and privacy. The management acknowledges that the information they have provided is accurate per the descriptions. 

Additionally, it states the types of services provided, system components, system aspects, how the system reads specific events and actions, report preparation processes, and why specific trust criteria are not met.

Additional reading

Recovery Point Objective for Costs, Risks, and Resilience

TL,DR: Recovery Point Objective (RPO) is the maximum acceptable data loss measured in time during an unexpected event. It works alongside RTO, which determines how quickly systems must be restored RPO is calculated from 3 factors: data recovery cost, required system performance, and overall risk tolerance. Critical systems require near-zero RPO with continuous replication, while…

A Brief Comparison Between PII vs. PHI vs. PCI

The protection of personal information is becoming critical for businesses worldwide in an increasingly digital world where customer data is acquired at multiple touchpoints.  Global privacy laws mandate the protection of three main categories of personal data: Personally Identifiable Information (PII), Payment Card Industry (PCI) data, and Protected Health Information (PHI).  The acronyms PII, PCI,…

Get GDPR Compliance Consulting Services: Choose from Top 10 GDPR Consultants

According to the Global Forensic Data Analytics Survey by EY in 2018, only 33 percent of respondents have an established GDPR compliance plan, while 39 percent were unfamiliar with GDPR altogether. It’s no wonder. Hence, getting into the intricacies of GDPR is a maze of a problem. Yet, ignorance is no defense against the steep…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.

Contact sales