Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » PCI DSS » Designated Record Set

Designated Record Set

A Designated Record Set is the records maintained by or for a covered entity to make decisions about people. It usually contains billing records, medical records, payment and claims records, case management records, health plan enrollment records, and so on.

Additional reading

Compliance for Healthcare: Laws and Journey Ahead

Healthcare companies are facing increasing levels of scrutiny over the last few years. Compliance for healthcare companies now covers a wider scope of aspects—bringing in healthcare providers, third, and fourth-party vendors that work with health care providers under its purview.  According to research by the Ponemon Institute published by IBM, the average cost of healthcare…
SOC 2 Trust Principles

A Beginner’s Guide to the SOC 2 Trust Principles

One of the first decisions you would make after deciding to get SOC 2 compliant is selecting the SOC 2 Trust Service Principles for your audit. The SOC 2 Principles, also called the Trust Services Criteria, form the foundation on which the entire scope, process, and audit of the framework is built. It is, therefore,…
nist best practices

NIST Cybersecurity Best Practices

The NIST cybersecurity framework holds a reputable name in the world of cybersecurity. It is mandatory for companies within the US federal network but companies from other industries like SaaS and tech can also adopt it should they have clients within the network. Unlike many other frameworks, NIST has a non-typical approach to implementation and…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.