💡 Feature requests

The trust center access request email lacks a clear call to action and does not provide any guidance on how to approve the request.

In case the Secfix Agent does not recognize applying one of the security requirements, users want to demonstrate compliance with the security requirements (e.g. PW Manager) & would like to have the option to upload proof. For example, they could provide a screenshot showing that the necessary configurations are in place. Use case: A company with strict BYOD policies allows employees to use personal devices but does not require installing an agent. To verify compliance, employees can manually confirm security settings (e.g. PW manager) and upload screenshots as evidence. This ensures compliance verification without needing automated detection.

Tracking audit findings in an Excel sheet feels disconnected - I would like to be able to do this directly within Secfix.

We'd like to manually add evidence records to prove that we're actually generating "records of access request issues tracked". Since Secfix doesn't provide Clickup integration yet and we can't turn some ticketing-system-related tasks green, we would then add proof for that on the manual evidence list. I'm referring to the automated tasks called "Records of access requests issues tracked" and "Records of security issues being tracked" in my example.

It would be great if you would change design of user icon to e.g. user initials, so we can easily distinguish who is behind the icon. Current non personalized icons are not helping with this and I need to hover on it in order to see who is responsible for what task, policy or to whom a computer belongs to. Please see attached images for clarification.

I’d like to request a more detailed and user-friendly way to track when specific issues (e.g. failed disk encryption) first appeared in the Automated Checks section. While the chart view is visually helpful, it’s difficult to pinpoint exact dates without clicking around. It would be much more practical to have a table with a filter for date ranges and an export option - especially for audit purposes or when following up on incidents. For example, when we were asked internally "When exactly did the disk encryption issue first occur?", I had to manually inspect the visual chart to locate the date - 20th October in this case. Having a clear, filterable history log would make this process much easier. This feature would save us significant time during audits and internal reviews, reduce the risk of overlooking critical events, and help us respond faster and more accurately to compliance-related requests - all without having to dig through visualizations manually.

Currently it is not possible to see which policies need to be accepted by which employee, If an employee is missing some policies, it only states Incomplete, but ISMS members are unable to see which ones are missing. This feature should also be available for custom policies. Steps: Open employees Click on the employee name that has Ongoing Onboarding status Click on Policies acceptance - Only accepted policies are listed. Please see the screenshot of the example and how it could be implemented.

Currently only the ISO policies are available on the policy page even if GDPR is bought and it would be nice to directly add them there instead of having to create custom policies.

It would be great if we could set up a custom subdomain (e.g., trust.company.com ) that links directly to our Trust Center, which would make the Trust Center feel more integrated within our website.