Report on controls at a service organization relevant to user entities’ internal control over financial reporting (ICFR). Used to report on management’s description of the design and operation of an organization’s systems.
Report on controls at a service organization relevant to security, availability, processing integrity, confidentiality or privacy.” Used to report on an organization’s ability to process users’ data and confidentiality.
Freely distributed report from an organization regarding their assertion on the effectiveness of their controls over their systems and security.
Set of requirements intended to ensure that all companies that process, store, or transmit credit card information maintain a secure environment.
The Open Web Application Security Project. Nonprofit foundation that works to enable organizations to improve the security of their software.
Provides SaaS application security that integrates application analysis into development pipelines an provides multiple security analysis technologies on a single platform
General Data Protection Regulation a regulation in EU law on data protection and privacy with the primary aim to enhance individuals’ control and rights over their personal data and to simplify the regulatory environment for international business.
The California Consumer Privacy act is a state statute intended to enhance privacy rights and consumer protection for residents of California.
The Personal Information Protection and Electronic Documents Act governs how private sector organizations collect, use and disclose personal information in the course of commercial business.