Your security and compliance glossary

All the terms you need to know when you’re trying to get compliance audit ready, fast.

Show filters

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.

Guides and reports

SOC 2

SOC 2 is the most sought after security framework for scaling SaaS companies. Keep up-to-date with the latest SOC 2 terms.

SOC 2 Type I report

SOC 2 compliance

SOC Trust Services Criteria

SOC 2 Type II report

ISO 27001

ISO 27001 is considered the international gold standard for information security management. Want to learn more? Get familiar with ISO 27001 terms.

Information Security Management System (ISMS)

ISO 27001 Risk Assessment

ISMS Governing Body

ISO 27001 security standard

HIPAA

HIPAA compliance keeps companies that access, process, or store protected health information in check. Find out commonly used HIPAA terminology.

HIPAA Compliance

HIPAA Covered Entities

PCI

PCI DSS applies to businesses that accept, process, store, transmit, or impact the security of cardholder data. Keep updated on PCI DSS terms.

Payment Card Industry Data Security Standard (PCI DSS)

Qualified Security Assessor (QSA)

Report on Compliance (ROC)

Self-Assessment Questionnaire (SAQ)

General

Learn all about security and compliance frameworks terminology.

General Data Protection Regulation (GDPR)

NIST Cybersecurity Framework (CSF)

Compliance risk management

California Consumer Privacy Act (CCPA)

Showing search results for:

Text

GRC

Governance, risk and compliance (GRC) refers to a company’s strategy for managing their overall governance, enterprise risk management and compliance with regulations. Find out more about GRC now.

ISO 27001

ISO 27001 is a set of requirements for an information security management system (ISMS) that helps keep consumer data safe. Find out more about ISO 27001 now.

HIPAA

HIPAA stands for the Health Insurance Portability and Accountability Act. Find out more about HIPAA now.

No results found 🤷