Compliance is a behavior that ensures an organization adheres to all legal, regulatory, and organizational policies, processes, and procedures. An audit is the action (internal and external) that measures the degree an organization complies with these legal, regulatory, and organizational policies, processes, and procedures.