Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary Β» SOC 2 Β» Privacy

Privacy

Privacy is one of the five trust service criteria of SOC 2. It is information an entity collects, uses, retains, discloses, and disposes to meet its objectives.Β 

The privacy principle aims to service organizations who handle sensitive personal information do so in a responsible and trustworthy manner. They should have appropriate controls in place to protect the privacy of individuals. This principle guides organizations to handle privacy based on the following:

– Notice and communication of objectives

– Choice and consent

– Collection

– Use, retention, and disposal

– Access

– Disclosure and notification

– Quality

– Monitoring and enforcement

Additional reading

What Is a Governance Model? Types, Benefits, and How to Build One

Recently, a friend reached out to me on LinkedIn with a request. She needed help preparing for a webinar on Data Governance and its various models. She had been assigned to lead this project in her department but felt completely unenthusiastic about it. I can certainly relate that data governance isn’t typically a subject that…

FISMA Requirements: List of Official Mandates and Practices

The Federal Information Security Management Act (FISMA) is a United States law that came into effect in 2002. Its goal is to guide federal agencies handling sensitive government information systems to develop, document, implement, and maintain security programs that protect their information systems. FISMA also focuses on developing risk-based policy for cost-effective security.  In this…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.

Contact sales