Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » SOC 2 » Privacy

Privacy

Privacy is one of the five trust service criteria of SOC 2. It is information an entity collects, uses, retains, discloses, and disposes to meet its objectives. 

The privacy principle aims to service organizations who handle sensitive personal information do so in a responsible and trustworthy manner. They should have appropriate controls in place to protect the privacy of individuals. This principle guides organizations to handle privacy based on the following:

– Notice and communication of objectives

– Choice and consent

– Collection

– Use, retention, and disposal

– Access

– Disclosure and notification

– Quality

– Monitoring and enforcement

Additional reading

Everything you don’t see in GRC reports: A look back at Humans of GRC series

When people hear “GRC,” they think policies, audits, frameworks, reports. They think about structure, not stories. Control, not connection. But we’ve spent years inside this world, working alongside the people who do the hard, quiet work—the ones who keep organizations steady through uncertainty, regulation, and change, who step in during crises, adapt to new technologies,…

NIST SP 800-171 Compliance: Guidelines and Requirements

The need for effective cybersecurity measures has never been more pressing in our globally interconnected society, where the spread of digital technologies affects every aspect of our lives. NIST 800 170 is a noteworthy compliance offering federal agencies and organizations invaluable insights into creating personalized security measures catered to their particular needs. It attempts to…
ISO 27001 Requirements

ISO 27001 Requirements – A Comprehensive List [+Free Template]

Compliance with ISO 27001 requires familiarity with the standard, diligent planning, and committed implementation. To facilitate the process, you need to fulfill the necessary ISO 27001 certification requirements. The ISO 27001 requirements guide discusses the ISMS policies and procedures you must implement to demonstrate compliance with the clauses (4-10) listed in the ISO 27001 compliance…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.

Contact sales