Glossary of Compliance
Compliance Glossary
Our list of curated compliance glossary offers everything you to know about compliance in one place.
Physical Safeguards
A wide range of physical security measures that prevent unauthorised access to covered entity’s physical assets and electronic information assets. This protection is ensured from both natural and environmental hazards or any kind of intentional encroachment. Examples include installing security cameras, fire safety systems, biometric access controls etc.
Additional reading
ISO 27001 Controls: A Guide to Implementing Annex A Controls
TL;DR ISO 27001 controls are Annex A safeguards that organizations use to manage information security risks and support their Information Security Management System (ISMS). ISO/IEC 27001:2022 includes 93 Annex A controls grouped into four themes: organizational, people, physical, and technological. The 2013 structure, with 114 controls across 14 domains, has been retired. You do not…
A Cautionary Tale: Lessons from the Star Health Insurance Data Breach
TL,DR: The Star Health Insurance breach highlights how exposed healthcare data can create major security and trust risks. Such incidents show the importance of protecting patient data, vendors, credentials, and internal systems. Healthcare companies need stronger monitoring, access control, encryption, and response readiness. In August 2024, a cyberattack on Star Health Insurance made headlines by…
HIPAA Compliant Cloud Storage to Secure Data
TL,DR: Any cloud provider storing or processing ePHI is classified as a HIPAA Business Associate, even if it only handles encrypted data without the decryption key Covered entities must sign a BAA before any ePHI is created, received, or transmitted through the cloud. Using a compliant provider alone does not make your organization compliant Required…

Sprinto: Your growth superpower
Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.





