Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » SOC 2 » SAS 70

SAS 70

SAS 70 is a standard developed by the American Institute of Certified Public Accountants (AICPA) to evaluate the security controls of service organizations. It guides them and their auditors to demonstrate the effectiveness of their controls to their clients and their clients’ auditors.

SAS 70 is currently replaced by the Statement on Standards for Attestation Engagements (SSAE) 18, which is the current standard for evaluating the controls of service organizations. While the SSAE 18 standard includes the same types of evaluations as SAS 70, it is updated to align with current industry best practices and to reflect changes in technology and the business environment.

Today, SOC 2 audits follow the SSAE 18 standard rather than SAS 70.

Additional reading

vanta alternatives
Blogs

Top 6 Vanta Competitors & Alternatives – Detailed Comparison

If you are looking for a compliance and security automation solution, in all probability, you considered Vanta. Being the first to enter this space, they boast an impressive list of customers. But bigger doesn’t necessarily mean better – with more competitors offering the same and often better features, your search for the best solution should…
Why is HIPAA Importan
Blogs HIPAA

Importance of HIPAA to Patients and Industries

The United States’ Health Insurance Portability and Accountability Act is touted as one of the most stringent healthcare legislations in the world. And with good reason. It standardizes the best practices to protect patient information and vests individuals with legal rights to enforce them, making the healthcare industry accountable. It, therefore, becomes imperative for cloud-hosted…
PCI DSS Training
Blogs Checklist PCI DSS

Ultimate Guide to PCI DSS Training

The Payment Card Industry Data Security Standards (PCI DSS) is a compliance framework that mandates organizations to protect sensitive cardholder information from security threats. Every organization that processes even one card transaction in a year needs to follow PCI security standards. As an organization going through the PCI DSS compliance journey, you must have the…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.

Contact sales