Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » SOC 2 » Confidentiality

Confidentiality

In the context of SOC 2 (Service and Organization Controls), confidentiality refers to the principle that requires organizations to protect the confidentiality of their customer’s data and information. The confidentiality principle is one of five Trust Services Criteria covered in a SOC 2 attestation engagement.

To meet the confidentiality principle, organizations must have controls to ensure that their customers’ data and information are kept confidential and only accessed by authorized individuals. This may include access controls, data encryption, and secure data transmission.

Additional reading

Multi Cloud Security Architecture: The Secret to Safekeeping Data

Businesses depend on multiple cloud based platforms to function seamlessly. While these significantly reduce IT complexity, maintaining a huge infrastructure of multiple endpoints opens a pandora’s box of complications – non-compliance, and security threats, vulnerabilities. As more companies adopt BYOD policy, the number of cloud components deployed outside the organization’s firewall are now higher than…

GDPR Fines In 2026: Penalty Structure, Calculation Criteria, and Biggest Fines So Far

In May 2023, Meta was fined €1.3 billion by the Irish Data Protection Commission for unlawfully transferring data to the United States. This remains the largest GDPR fine ever issued to date. However, while massive penalties like these dominate headlines, they represent only a fraction of the overall enforcement activity across Europe.  Since the GDPR…

SOC 2 Auditors and Service Providers [How to Choose One]

Every business looking to get SOC 2 (Service Organization Control) compliant must work with a credible SOC 2 auditor—either a licensed CPA or an American Institute of Certified Public Accountants (AICPA) accredited third-party firm. Auditors must be independent, with no connection to your organization, to ensure unbiased reporting. When selecting the best SOC 2 auditor,…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.

Contact sales