Compliance Platform for
Ethics, Privacy and Security
CCPA/CPRA
California Consumer Privacy Act
The California Consumer Privacy Act gives customers more control over the personal data that companies collect about them, and the CCPA rules offer instructions on how to put the law into practise.
POPIA
Protection of Personal Information Act (South Africa)
The Protection of Personal Information Act is a piece of legislation that oversees South African law regarding data protection and privacy. The act was enacted to regulate the right to privacy.
SOC-2
System and Organization Controls
System and Organization Controls is the name of a group of reports generated during an audit and is defined by the American Institute of Certified Public Accountants (AICPA).
ISO 27001
The International Information Security Standard
ISO 27001 is the international standard for information security. It provides guidelines for an information security management system (ISMS).
GDPR
General Data Protection Regulation
The General Data Protection Regulation (EU) (GDPR) is a regulation in EU law on data protection and privacy in the European Union (EU) and the European Economic Area (EEA)
HIPAA
Health Insurance Portability and Accountability Act
The Health Insurance Portability and Accountability Act is a federal law that required the creation of national standards to protect sensitive patient health information from being disclosed without the patient’s consent or knowledge
PCI DSS
Payment Card Industry Data Security Standard
The Payment Card Industry Data Security Standard is a set of security standards governed by the Payment Card Industry Security Standards Council (PCI SSC), the compliance scheme aims to secure credit and debit card transactions against data theft and fraud
VCDPA
Virginia Consumer Data Protection Act
The VCDPA gives consumers the right to access their data and request that their personal information be deleted by businesses. It also requires companies to conduct data protection assessments related to processing personal data for targeted advertising and sales purposes
SOX
Sarbanes-Oxley Act
The Sarbanes Oxley Act requires all financial reports to include an Internal Controls Report. This shows that a company’s financial data accurate and adequate controls are in place to safeguard financial data
Custom Frameworks
Custom Frameworks for Privacy and Compliance
Regulations are constantly changing, as your organisation scales, you need a unique structure that works for your organisation. Create specialised compliance and privacy frameworks in accordance with your needs