Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » GDPR » Personal Data Filing System

Personal Data Filing System

Personal Data Filing System in GDPR is defined as a “any structured set of personal data which are accessible according to specific criteria, whether centralized, decentralized or dispersed on a functional or geographical basis”. Essentially, it defines a filing system in relation to structured personal data. Data filing must be structured to enable easy access to personal data.

Additional reading

SOC 2 vs SOC 3: What’s the Difference and Which One Do You Need?

TL,DR: SOC 2 reports provide detailed auditor opinions on control design and operational effectiveness, intended for customers evaluating vendor security. SOC 3 reports offer a general public overview used primarily for marketing purposes Both reports evaluate controls against the same Trust Service Criteria (security, availability, confidentiality, processing integrity, privacy), but SOC 2 includes granular control…

Enterprise GRC Explained: Benefits, Challenges, and How to Get It Right

TL,DR: Enterprise GRC connects governance, risk, and compliance across the whole organization. It helps leaders spot risks earlier, make better decisions, and reduce disconnected control work. The article covers adoption barriers, data silos, regulatory complexity, and enterprise-wide GRC ownership. Keeping a growing business on track is about much more than hitting targets. It’s about making…

NIST Phish Scale: How It Measures Phishing Risk

TL,DR: The NIST Phish Scale moves beyond basic click-rate tracking by introducing context and difficulty dimensions that rate phishing simulations against technical cues, social engineering complexity, and employee awareness levels A survey of 1,400 organizations revealed 26% experienced increased phishing attempts in the past year, and 88% of those fell victim to ransomware, underscoring the…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.