Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » SOC 2 » Privacy

Privacy

Privacy is one of the five trust service criteria of SOC 2. It is information an entity collects, uses, retains, discloses, and disposes to meet its objectives. 

The privacy principle aims to service organizations who handle sensitive personal information do so in a responsible and trustworthy manner. They should have appropriate controls in place to protect the privacy of individuals. This principle guides organizations to handle privacy based on the following:

– Notice and communication of objectives

– Choice and consent

– Collection

– Use, retention, and disposal

– Access

– Disclosure and notification

– Quality

– Monitoring and enforcement

Additional reading

Cyber Essentials
Blogs Cybersecurity

Cyber Essentials Certification: Ultimate Guide

How much does your business suffer from cyber threats? And with attacks taking a masterful turn, safeguarding sensitive data — and winning customers’ trust — requires more than just a firewall or antivirus software.  This is where Cyber Essentials certification comes in, a government-backed framework that helps organizations prevent the most common types of cyberattacks…
Blogs

Risk Management Benefits: Why it is Key to Long-Term Success

Risk in IT is like quicksand—deceptively stable on the surface, but one wrong step can pull you into a struggle for survival. Every business decision impacts your risk posture, and thus, managing them with precision is your key to long term success.   In this article, we explore why having an effective risk management plan is…
GRC Components Explained: Governance, Risk, Compliance Overview
Blogs GRC

What are 3 Components of GRC? Governance, Risk, and Compliance

Every business has always needed strategic direction, practices that minimize risks, and compliance to avoid legal penalties. There may be a lack of formal processes, but historically, Governance, Risk, and Compliance has been practiced by businesses individually.  Fast-forward to the recent trends where a need for an integrated approach has been highlighted. This shift is…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.

Contact sales