Compliance

Intro

This relates to all the software or Intellectual Property being in compliance for the organization to share that information for general public or independent governing body. Typically required on few levels depending on who is the product targeted for. Definitely important when working on a classified level of technology or being used by government bodies.

American

SOC 2

SOC 2 is a voluntary compliance standard for service organizations, developed by the American Institute of CPAs (AICPA), which specifies how organizations should manage customer data. The standard is based on the following Trust Services Criteria: security, availability, processing integrity, confidentiality, privacy.

PII

Personally identifiable information

HIPPA

Health related data. Regulations around how health information should be stored by the providers.
Europe legislation?

TSF

Tenant Security Framework

TPSA

IAM

Identity and Monitoring