Your security and compliance glossary

All the terms you need to know when you’re trying to get compliance audit ready, fast.

Show filters

What is GDPR?

GDPR is an acronym for General Data Protection Regulation. In 2012, the European Union (EU) started a digital reform to create new standards for internet and technology advancements. By 2018, the EU established the GDPR in order to protect individuals’ personal data.

The GDPR is considered the core of Europe’s digital privacy legislation. GDPR requirements govern the collection, processing, consent, and distribution of personal information to ensure that EU citizens have more control over their own data.

The data protection policies created by the GDPR are designed to put consumers first. Compliance with regulations falls entirely on the businesses and organisations. The impact of the GDPR expands outside of the EU. Any goods or services provided to EU citizens are subject to GDPR and must comply.

Additional resources you might like:

Compliance for Startups: Join Vanta's Office Hours

Do you have questions about SOC 2, ISO 27001, HIPAA, or other security and privacy frameworks? Wondering if, when, and how to achieve compliance (as painlessly as possible)? Join the next office hours with Vanta team leaders to learn about compliance for growing startups

ISO 27001
ISO 27001 vs. SOC 2: Which standard is right for my business?

Complying with security standards such as ISO 27001 or SOC 2 can help boost your business, but for technology startups, security compliance is often lower on the list of company priorities.

Compliance Automation for Security Experts

Swapped with countless spreadsheets and endless email threads? Wondering how compliance automation can help you more easily manage risk and prove security in real time?

Get compliant and
build trust, fast.