Glossary of Compliance
Compliance Glossary
Our list of curated compliance glossary offers everything you to know about compliance in one place.
TSC
The Trust Service Criteria (TSC) are the specific criteria that must be met in order for a service organization to achieve compliance with SOC 2. The TSC are divided into five categories: security, availability, processing integrity, confidentiality, and privacy. Within each category, there are specific controls and requirements that must be implemented and maintained in order for the service organization to meet the TSC and achieve SOC 2 compliance.
Additional reading
Fisma vs FedRAMP Certification – Major Differences and Similarities
TL,DR: FISMA (2002) sets IT security standards for federal agencies and contractors with one-to-one authorization per agency. FedRAMP (2011) standardizes cloud security with one-to-many authorization covering all agencies FISMA requires system inventory, risk assessments, security plans, control implementation, ongoing monitoring, and annual OMB reviews. FedRAMP requires independent 3PAO assessment and continuous monitoring of cloud services…
Corporate Compliance Program: Framework and Implementation
TLDR If you’re considering building a corporate compliance program, it’s likely driven by a few key factors. Perhaps a prospect has requested proof of your company’s ethics and security standards. Maybe regulatory requirements apply based on the services you provide, or you simply want to elevate your organization’s culture, ethics, and security practices. Whatever the…
Security Vs Compliance: Key Differences and Similarities
TL,DR: Security refers to the technical controls protecting assets against cyber threats, while compliance is adherence to third-party regulatory standards demonstrating data protection to external parties Being compliant does not guarantee being secure. An organization can pass an audit while still having exploitable vulnerabilities. Conversely, strong security controls do not automatically satisfy every framework requirement…

Sprinto: Your growth superpower
Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.





