Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » GDPR » Regulation (EC) No 45/2001

Regulation (EC) No 45/2001

Regulation (EC) No 45/2001 is concerned with protection of individuals in relation to personal data processing by EC institutions. It requires institutions to appoint a data protection officer and European Data Protection Supervisor to be an independent authority for data protection.

Additional reading

How to get SOC 2 Type 2 Certification

Getting a SOC 2 type 2 certification is critical to building trust and demonstrating to your customers that you take data security and protection seriously. While there isn’t any legal obligation to comply with SOC 2, getting your organization SOC 2 attested has many advantages.  For one, it helps you stand out and removes friction…

SOC 2 Policies and Procedures: What You Need to Know

TL,DR: SOC 2 policies document how your organization implements controls for Trust Services Criteria. Auditors expect accepted policies, control owners, metrics, implementation details, and supporting evidence. The article lists 21 policies, including access control, continuity, change management, and incident response. Clear and Concise documentation is the key that unlocks doors to a successful SOC2 implementation….

Access Control List: A Critical Tool for Securing Your Network

TL,DR: An access control list (ACL) is a register defining user permissions that grant or deny access to critical systems and networks. Insiders caused 20% of data breaches in 2022 due to privilege creep (Verizon) Two types exist: standard ACLs (filter by source IP only, applied near destination) and extended ACLs (filter by source IP,…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.