Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » SOC 2 » Security

Security

Security is one of the five trust service criteria of SOC 2. It refers to the protection of information and systems from unauthorized disclosure of information or damages to systems that may result in compromised availability, integrity, confidentiality, and privacy in a way that affects the capacity of the organization to meet its objectives. It seeks to protect:

– Information that is collected, stored, used, transmitted, or processed.

– Systems that leverage electronic information to process, transmit, transfer data to meet its objectives.

Additional reading

HIPAA Authorization: Ensuring Patient Privacy and Consent

HIPAA authorization is an important part of safeguarding sensitive patient health information. It is necessary when Personal Health Information (PHI) is utilized or shared for actions that are prohibited under the HIPAA Privacy Rule. As a covered entity, if you fail to comply with this component of HIPAA, you are subject to penalties. 📋 Quick…

What Is Audit Logs? Key Concepts and Benefits

TL,DR: An audit log is a sequential record capturing event time, responsible users, and impacted entities across 7 categories: user activity, access control changes, data changes, system events, configuration changes, security incidents, and custom events Audit logs are essential for compliance with SOC 2, ISO 27001, HIPAA, and PCI DSS, all requiring documented evidence of…

GDPR Data Mapping Template: Essential Practices and Compliance Strategies

TL,DR: GDPR data mapping indexes how a business collects, stores, and uses personal data across systems, required under Article 30 (Records of Processing Activities) and Article 36 (high-risk processing consultation) The process follows 7 stages: trace data flow, classify data, identify storage locations, document third-party sharing, assess legal basis, evaluate security measures, and establish retention/deletion…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.

Contact sales