Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » SOC 2 » SAS 70

SAS 70

SAS 70 is a standard developed by the American Institute of Certified Public Accountants (AICPA) to evaluate the security controls of service organizations. It guides them and their auditors to demonstrate the effectiveness of their controls to their clients and their clients’ auditors.

SAS 70 is currently replaced by the Statement on Standards for Attestation Engagements (SSAE) 18, which is the current standard for evaluating the controls of service organizations. While the SSAE 18 standard includes the same types of evaluations as SAS 70, it is updated to align with current industry best practices and to reflect changes in technology and the business environment.

Today, SOC 2 audits follow the SSAE 18 standard rather than SAS 70.

Additional reading

Secureframe vs Vanta vs Drata: Who actually delivers on Compliance? 2026

If you’re just starting your search for a SOC 2, ISO 27001, HIPAA, or GDPR compliance solution, you’ve likely come across three big names: Secureframe, Vanta, and Drata. Each promises to automate evidence collection, streamline audits, and simplify certification. But which one truly delivers on its promises?  Choosing the wrong platform can mean costly delays…

5 Best Risk Compliance Software for 2026

TL;DR This guide compares the top risk compliance software tools for 2026, based on automation, risk visibility, integrations, scalability, and ease of implementation. Best Risk Compliance Software in 2026:1. Sprinto2. Drata3. Vanta4. OneTrust5. AuditBoard Risk compliance software has become the backbone of staying audit-ready in a hyper-regulated landscape. Understanding the 5 components of a risk…

List of ISO 27001 Consultant Services For Organization

Bagging an ISO 27001 certification can amplify your reputation, bring you new business, improve security status, and save you from regulatory penalties. But the checklist of items can seem never ending—a typical audit has ten management system clauses and an annexure stating 114 information security controls. You can do-it-yourself and get certified. That’s certainly possible….

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.

Contact sales