Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » SOC 2 » PII

PII

PII refers to Personally Identifiable Information or any information used to identify a person. SOC 2 requires businesses that handle sensitive data to implement appropriate controls to ensure PII’s confidentiality, integrity, and availability.

Examples of PII in a SOC 2 report include names, addresses, telephone numbers, email addresses, social security numbers, and financial information such as credit card numbers and bank account numbers.

Additional reading

What is in SOC 2 Report Example – Detailed Breakdown

TL;DR SOC 2 reports are comprehensive assessments of an organization’s security controls, typically containing five main sections: Management Assertion, Independent Auditor’s Report, System Description, Trust Services Criteria and Test Results, and Other Information. The Independent Auditor’s Report section is crucial, providing an opinion on compliance (unqualified, qualified, adverse, or disclaimer), while the System Description offers…

What Is An ISMS? Components, Implementation & Best Practices

TL,DR: An ISMS is a framework of policies, procedures, and controls for managing information risk. The article explains how ISMS work supports confidentiality, integrity, availability, accountability, and stakeholder trust. It also covers components, rollout steps, common challenges, and ISO 27001 alignment. Most companies don’t start out thinking they need an ISMS. They arrive there when…

Security Issues in Cloud Computing: How To Prevent & Solve Them?

TL,DR: By 2025, the world will store 200 zettabytes of cloud data. The top 8 cloud security threats include ransomware (90% of organizations targeted in 2024), system misconfiguration, compromised APIs, DDoS attacks, and insider threats Misconfiguration is the most common and preventable cloud security issue, occurring when default settings are left unchanged, storage buckets are…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.