Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » SOC 2 » Privacy

Privacy

Privacy is one of the five trust service criteria of SOC 2. It is information an entity collects, uses, retains, discloses, and disposes to meet its objectives. 

The privacy principle aims to service organizations who handle sensitive personal information do so in a responsible and trustworthy manner. They should have appropriate controls in place to protect the privacy of individuals. This principle guides organizations to handle privacy based on the following:

– Notice and communication of objectives

– Choice and consent

– Collection

– Use, retention, and disposal

– Access

– Disclosure and notification

– Quality

– Monitoring and enforcement

Additional reading

How to Strengthen Your Organization’s Security Culture

Over the years, stringent laws have come into effect, along with the introduction of most advanced threat detection and prevention technologies. However we continue to encounter familiar breach stories—employees using weak passwords, opening malicious emails, misusing too many permissions, etc. No matter the geography, hackers worldwide have been playing on human behaviors, attitudes, cognition, and…

Cyber Resilience: Strategies to Safeguard Your Business from Cyber Threats

In 2023, over 343,338,964 people fell victim to a cyber attack, and the number does not seem to stop growing. While traditional cyber security measures focus on preventing these attacks, perhaps even getting the numbers down, the concept of cyber resilience takes it a step further.  It’s not about how you can defend yourself against…

PCI DSS Certification Process: A Complete Guide

TL;DR PCI DSS is for payment card data. It is seen as the gold standard for protecting sensitive authentication data and with PCI DSS 4.0 in effect the requirements have only become more stringent. The newer and stronger version was built after much input from the PCI Community, including 6,000+ comments from 200 companies and…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.

Contact sales