Your security and compliance glossary

All the terms you need to know when you’re trying to get compliance audit ready, fast.

Show filters
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

Follow us


SOC 2 is the most sought after security framework for scaling SaaS companies. Keep up-to-date with the latest SOC 2 terms.

ISO 27001

ISO 27001 is considered the international gold standard for information security management. Want to learn more? Get familiar with ISO 27001 terms.


HIPAA compliance keeps companies that access, process, or store protected health information in check. Find out commonly used HIPAA terminology.


PCI DSS applies to businesses that accept, process, store, transmit, or impact the security of cardholder data. Keep updated on PCI DSS terms.

Showing search results for:

Payment Card Industry Data Security Standard (PCI DSS)

The PCI DSS is a set of requirements for all organizations that store, process, transmit, or impact security of branded customer cardholder data.


A merchant is any entity that accepts payment cards, according to the PCI Security Standards Council.

HIPAA Sanctions

Learn what HIPAA Sanctions are and how they can include a range of penalties for HIPAA violations.

HIPAA Safeguards

HIPAA Safeguards are the administrative, technical, and physical safeguards that covered entities are required to maintain by the terms of the HIPAA Security Rule to protect individuals’ electronic protected health information.

HIPAA Risk Assessment

A HIPAA risk assessment identifies potential risks and vulnerabilities to the confidentiality, availability, and integrity of all protected health information (PHI) that an organization creates, receives, maintains, or transmits.

HIPAA Covered Entities

A HIPAA-covered entity is an individual, organization, or agency to which the HIPAA Rules apply; covered entities include health care providers, health plans, and health care clearinghouses.

HIPAA Compliance

HIPAA Business Associates

HIPAA Business Associates are people or entities that perform functions involving the use or disclose of protected health information.

HIPAA Rules: Omnibus Rule

The HIPAA Final Omnibus Rule of 2013 was issued by the Department of Health and Human Services (HHS) to implement required amendments under the Health Information Technology for Economic and Clinical Health (HITECH) Act.

HIPAA Rules: Breach Notification Rule

Trying to find out about the HIPAA Breach Notification Rule? Vanta's got you covered. Click here to learn more about HIPAA Breach Notification regulations.

No results found 🤷

Get compliant and
build trust, fast.

Two wind turbines on a white background.
Get compliant and build trust,
Get started