Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » SOC 2 » SOC 2 Controls Efficiency

SOC 2 Controls Efficiency

SOC 2 Controls Efficiency is a process used to assess if the security measures you have in place in your business environment are doing their job like it’s supposed to.

For example, you have a secure vault storing all your important documents and valuables. To keep it safe, you have a security system with multiple layers of protection, including access control, surveillance cameras, and motion sensors. Now, the efficiency of this security system matters a lot. If any of these components fail or work at reduced efficiency levels, it becomes a recipe for chaos.

Similarly, SOC 2 Controls are the tools and strategies you use to prevent and detect any security mishaps or unauthorized access to sensitive data. These controls include:

Security ControlsLike the locks on your vault
Confidentiality ControlsTo keep sensitive data confidential
Privacy ControlsEnsures only authorized individuals can access certain information
Processing Integrity Controls Ensure data is processed accurately
Availability ControlsMakes sure data is accessible when needed

If you do find that any of these controls are not performing as expected, it’s a sign that you need to repair the control in place or deploy new solutions if patching fails.

Additional reading

Access Review

What is Access Review and How does it work?

November 12, 2021. A former South Georgia Medical Center employee made an unauthorized copy of a patient’s private data before leaving the company. The center had to provide patients with free credit monitoring and identity restoration to compensate for the disgruntled ex-employee’s actions. While this is the case of a malicious insider, there are other…

What is HIPAA Law: Why You Need To Follow It

The healthcare industry is a complex world. With doctors, clinics, service providers, patients, and more, running everything smoothly can get messy without regulations. HIPAA law aims to uncomplicate a number of issues around this industry.  In this article, you will learn what HIPAA law is, what constitutes this law, who should follow it, and what…
HIPAA Certification

HIPAA Certification (All you need to know)

Let’s bust a popular HIPAA myth, shall we? There is no HIPAA certification! Period. Contrary to what you may read in the multitude of content on the world wide web, there is nothing official about HIPAA certification. It doesn’t have the blessings of the Department of Health and Human Services (HHS) or the Office of…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.