SOC (Service and Organization Controls) 2 is a security certification that was developed by the American Institute of Certified Public Accountants (AICPA). SOC 2 is an auditing procedure ensuring your service providers securely manage your data to protect the interests of your organization and the privacy of its clients. For security-conscious businesses, SOC 2 compliance is a requirement when considering a SaaS provider.

The General Data Protection Regulation (GDPR) is a regulation in EU law on data protection and privacy in the European Union and the European Economic Area. The GDPR is an important component of EU privacy law and of human rights law, in particular Article 8 of the Charter of Fundamental Rights of the European Union.

The Payment Card Industry Data Security Standard (PCI DSS) is an information security standard for organizations that handle credit card or data related to credit card schemes. It is very important for organizations to ensure the safety in processing of the credit card holder data The PCI Standard is administered by the Payment card industry security standards council. The Standard was created to increase controls around the card holder data to reduce the credit card frauds.

The Health Insurance Portability and Accountability Act of 1996 (HIPAA) required the Secretary of the U.S. Department of Health and Human Services (HHS) to develop regulations protecting the privacy and security of certain health information, which are commonly know as the HIPAA Privacy Rule and the HIPAA Security Rule.