Glossary of Compliance
Compliance Glossary
Our list of curated compliance glossary offers everything you to know about compliance in one place.
Processor Agreement
A DPA, or Data Processing Agreement, is an agreement between a data processor (for instance, a third-party service provider) and a data controller (such as a company) to regulate any personal data processing that might be conducted for business purposes. A DPA is also known as a GDPR data processing agreement.
Additional reading
List of NIST Cybersecurity Framework Controls
According to a study conducted in 2024, the global average cost of a data breach was $4.88 million, making a strong case for robust cybersecurity frameworks. The NIST Cybersecurity Framework (CSF) provides a systematic means of mitigating such risks by providing guidelines to help organizations protect their valuable assets. While the NIST cybersecurity controls offer…
NIST 800-171 Checklist: Fastrack Your NIST Compliance
NIST 800-171, or NIST SP 800-171, is a guideline issued by the National Institute of Standards and Technology (NIST) for non-federal entities. It outlines rules for securely handling Controlled Unclassified Information (CUI), covering storage, processing, and transmission. If your organization does business with the U.S. DoD, you must be NIST 800-171 compliant. It is designed…
New Risks Emerging in Vendor Ecosystems (And What They Mean for TPRM)
Vendor ecosystems have become one of the largest risk surfaces for modern organizations. Businesses now rely on hundreds, often thousands, of vendors, including SaaS platforms, cloud services, processors, and subcontractors, to run day-to-day operations Recent incidents have shown how quickly failures in these ecosystems can cascade. Supply-chain cyberattacks have already demonstrated how vulnerable vendor ecosystems…
Sprinto: Your growth superpower
Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.
