Blog

Insights and expertise from Thoropass

Featured

Becoming the End-to-End Cybersecurity Auditor

Innovation has always been at the forefront for Thoropass, and with the introduction of the Audit Lifecycle Platform, we're the only end-to-end cybersecurity auditor built for the AI era.

Learn More

Latest posts

Compliance

ISO 27001 for your business and what you need to know

August 16, 2023
|
Oro
Thoropass discusses ISO 27001 for your business and what you need to know about the international standard.
Read more

Compliance

SOC 2 vs SOC 1: A simple breakdown

August 15, 2023
|
Thoropass Team
Learn how SOC 1 and SOC 2 reports provide critical information about an enterprise’s operations to customers and regulators.
Read more

Compliance

Everything you need to know about PCI DSS penetration testing

August 11, 2023
|
Oro
PCI DSS penetration tests are designed to identify, exploit, and address vulnerabilities in your network environment.
Read more

Compliance

What is CPRA? Everything you need to know about the California Privacy Rights Act

August 10, 2023
|
Oro
The CPRA is an amendment to the existing CCPA. Learn what's new and different with this California privacy act.
Read more

Compliance

Business acceleration via SOC 2

August 9, 2023
|
Thoropass Team
Thoropass announces a new guide, Unlocking Growth Through Compliance: SOC 2 as a Strategic Business Generator.
Read more

Compliance

CCPA: Understanding the California privacy act and its enhancement (CPRA)

August 7, 2023
|
Oro
CCPA and CPRA play a critical role in protecting consumers' personal information and holding businesses accountable for their data practices.
Read more

Compliance

What is PCI DSS?

August 4, 2023
|
Bruce Edwards
Payment Card Industry Data Security Standards (PCI DSS) are non-regulatory information security standards designed for transaction security.
Read more

Compliance

SOC 2 Controls List Overview

August 1, 2023
|
Thoropass Team
SOC 2 has a long list of controls that each business pursuing a SOC 2 report needs to implement. Here's everything you need to know.
Read more

Compliance

HIPAA requirements for HealthTech SMBs

July 19, 2023
|
Oro
HIPAA compliance isn't just for HealthTech. You may need to meet HIPAA requirements to work with enterprise customers in the health space.
Read more

Compliance

MOVEit or lose it: Lessons learned from the recent zero-day vulnerability

July 17, 2023
|
Thoropass Team
Thoropass discusses the recent MOVEit cybersecurity attack and the lessons learned from its recent zero-day vulnerability.
Read more

Compliance

IT solutions powering the newest era of digital health compliance

July 14, 2023
|
Thoropass Team
Get the recap of IT Brew's event where we discussed the current world of compliance and InfoSec regarding HealthTech solutions.
Read more

Compliance

GDPR countries: What countries are covered by GDPR?

July 14, 2023
|
Oro
GDPR protects the personal data of EU residents from any organization, regardless of which country the data processing occurs in.
Read more

Compliance

Automation and audit

July 12, 2023
|
Cristina Bartolacci
Cristina's Compliance corner is back and this week it is all about automation and audit with guests, Annie Gregory and Rebecca Houser.
Read more

Compliance

Unpacking GDPR: Legitimate interest

July 7, 2023
|
Oro
Discover how GDPR legitimate interest is applied in data processing and how organizations can determine if it's the appropriate legal basis.
Read more

Compliance

GDPR penalties and fines: An introduction

July 6, 2023
|
Oro
Failing to comply with GDPR can lead to extensive penalties and fines, even if you do business outside of the European Union.
Read more
Curated by experts

We provide the compliance expertise, so you don’t have to

At Thoropass, we’re more than a readiness solution. Our team of experts are equipped with insight and hands-on experience to provide you with industry-leading perspective and guidance.

Meet the Experts

Stay connected

Subscribe to receive new blog articles and updates from Thoropass in your inbox.

Thank you for subscribing! Be on the lookout for confirmation in your inbox!
Oops! Something went wrong while submitting the form.

Want to join our team?

Help Thoropass ensure that compliance never gets in the way of innovation.

View open roles

Have any feedback?

Drop us a line and we’ll be in touch.

Contact us
Get Started

Products

Thoropass AuditCompliance Automation
PentestingThoropass AIAccess ReviewsSecurity QuestionnairesRisk AssessmentTrust CenterIntegrations and APIs

Solutions

Get CompliantMaintain ComplianceIT Security AuditsThoropass vs. Audit FirmsThoropass vs. Vanta

Frameworks

SOC 1SOC 2HIPAAHITRUSTCyber EssentialsGDPRISO 27001ISO 27018ISO 42001CMMC Level 1NIST CSF 2.0PCI DSSOther Frameworks

Resources

Case Studies
BlogGuidesEventsGlossaryHelp Center

Industries

HealthcareSaaSFinTechOther Industries

Company

Our DifferenceMeet the ExpertsNewsroomCareersIndependence and ExcellenceBecome a PartnerTrust CenterContact us

Legal

MSADPAReport an IssueImpartiality and InquiriesTerms and ConditionsPrivacy Policy

Certifications:

Laika Compliance, LLC dba Thoropass Assurance is a licensed certified public accounting firm registered with the American Institute of Certified Public Accountants (AICPA). Thoropass, Inc. dba Thoropass is a leading cybersecurity and compliance professional services and technology firm.

© Copyright 2026 Thoropass, Inc.

Linkedin Logo Streamline Icon: https://streamlinehq.com
X Logo Streamline Icon: https://streamlinehq.com
Video Player 1 Streamline Icon: https://streamlinehq.com