Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » SOC 2 » Confidentiality

Confidentiality

In the context of SOC 2 (Service and Organization Controls), confidentiality refers to the principle that requires organizations to protect the confidentiality of their customer’s data and information. The confidentiality principle is one of five Trust Services Criteria covered in a SOC 2 attestation engagement.

To meet the confidentiality principle, organizations must have controls to ensure that their customers’ data and information are kept confidential and only accessed by authorized individuals. This may include access controls, data encryption, and secure data transmission.

Additional reading

NIST Phish scale

Can your employees catch a Phish? Find out with the NIST Phish scale

82% incident rate. 10.3 Billion dollars in losses. 30% uptick in phishing attempts. Need we say more? Phishing is more prevalent and harmful than we think. Yet, our attempts to curb it stay limited to one-off training and tracking vanity metrics to gauge phishing resilience.  Enter the NIST Phish scale — a simple yet effective…
Three tips for avoiding the consequences of non-compliance

Tips to Avoid Consequences of Non-Compliance

According to GlobalSCAPE, the average price of noncompliance is 2.71 times higher than that of compliance. The consequences of noncompliance have become a significant concern today. Failing to adhere to cyber security can go beyond reputational damage and can have devastating repercussions for your business. If you’re a business owner, understanding these consequences is not…

More Money =/= More Security. A Conversation on Budget with Christophe Fuolon 

During a recent conversation with Christophe Foulon, a vCISO at Qusitive who has over 17 years of experience, I naively asked him Can we equate bigger cybersecurity budgets with better protection—or are we missing the bigger picture? Christophe didn’t hesitate. “A big budget doesn’t guarantee good security—if it did, we’d never hear of billion-dollar companies…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.

Contact sales