Glossary of Compliance
Compliance Glossary
Our list of curated compliance glossary offers everything you to know about compliance in one place.
Statement of Applicability
A Statement of Applicability is a document needed for ISO 27001 certification. It’s a document that declares the Annex A controls that your enterprise determined to be necessary for mitigating information security risk, including the Annex A controls that were excluded.
Additional reading
SOC 2 Audit: The Ultimate Guide (Scopes, Process & Tips)
According to the AICPA, demand for SOC 2 reports is up nearly 50%, and more companies are taking a hard line: no report, no deal. Consequently, risk teams have tightened their vendor-assessment checklists. Buyers also want a fresh PDF certifying that your services are secure, not promises that the audit is “in progress.” If you’re…
PCI DSS Audit: A Complete Guide + Downloadable Checklist
TL;DR Willie Sutton, the infamous twentieth-century U.S. criminal, was allegedly known to rob banks because “that’s where the money is.” In this digital age, organizations are exposed to financial fraud due to their lax security- leaving sensitive consumer data stolen and misused. To protect against this, PCI DSS (Payment Card Industry Data Security Standard) was…
SOC 2 Automation: What Is It, and Why Do You Need It?
SOC 2 automation helps streamline the preparation for the audit process by assisting with scoping your report, outlining necessary actions, and running assessments to ensure you’re ready for the audit. While not everything in a SOC 2 audit can be automated, automating what you can is a huge time-saver and cost-cutter for your business. Compliance…
Sprinto: Your growth superpower
Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.
