Frameworks, Standards and Regulations
SAI360 helps organizations across the globe meet regulatory compliance requirements with easy-to-use software for GRC, Healthcare and EHS&S along with modern ethics and compliance learning content.
With SAI360 you can eliminate time-wasting data entry with hundreds of built-in, pre-mapped standards and controls, and quickly access standards in a searchable library. Learn more about how we meet some of the most common use cases below. Don’t see a frameworks, standards and regulation listed here? Contact us to learn more!
Developed by the American Institute of Certified Public Accountants (AICPA), the System and Organization Controls (SOC) 2 professional standards focus on preventing the unauthorized use of assets and data.
Learn MoreAustralian Prudential Regulation Authority supervises Australia’s banks, insurers and superannuation funds to ensure safety and soundness of depositor funds.
Learn MoreCOSO Principles help organizations work within established industry standards to evaluate risk and ensure transparent, ethical processes.
Learn MoreThe CSRD extends NFRD reporting requirements to include detailed reports on environmental rights, social rights, human rights, and governance factors.
Learn MoreThe Digital Operational Resilience Act (DORA) is an EU regulation aimed at helping ensure the operational resilience of the financial sector against cyber threats and other operational risks.
Learn MoreISO/IEC 27001 provides a framework for organizations—of any size, in any industry—to ensure the confidentiality, integrity, and availability of corporate data
Learn MoreThe Maine Privacy Act requires ISPs protect customer personal information from unauthorized use, disclosure, or access.
Learn MoreThe Nevada Privacy Act gives consumers broad rights to opt out of the sale of their personal information.
Nevada Privacy ActCybersecurity Maturity Model Certification (CMMC) is the cybersecurity standard for all US defense industrial contractors
Learn MoreThe NIST CSF consists of guidance developed by the National Institute of Standards and Technology (NIST) to help organizations manage and reduce cybersecurity risk
Learn MoreIf your organization is part of the U.S. federal government you need to understand NIST SP 800-53, a set of guidelines governing information security and privacy
Learn MoreProvides a framework for all HIPAA covered entities to protect electronic protected health information
Learn MoreThe Sarbanes-Oxley Act of 2002 mandates transparency in corporate financial recordkeeping and reporting to prevent fraud.
Learn MoreA new rule for U.S. companies to disclose risks and impacts caused by climate change, such as greenhouse gas emissions and other environmental risks.
Learn MoreThe Shared Assessments Standardized Information Gathering (SIG) Questionnaire is standard set of questions to structure your compliance risk assessments of third-party vendors
Learn More