Add GDPR Policies to the policy page if the GDPR framework is added
Sophia Fries
Currently only the ISO policies are available on the policy page even if GDPR is bought and it would be nice to directly add them there instead of having to create custom policies.
Elżbieta Żurakowska
Upvoting and commenting on behalf of Julian H.
Currently, Secfix-provided ISO 27001 policies are automatically linked to the corresponding standards and frameworks, making it easy to trace them within the platform and view them under the relevant framework views. However, custom policies created by users for instance GDPR policies cannot be connected to any framework.
We would like the ability to manually assign or link these custom policies to a specific framework and standard, just like the default ISO 27001 policies. This would significantly improve traceability and visibility, especially when reviewing frameworks where custom policies serve as key evidence.
Value:
-> Improved alignment between policies and frameworks
-> Better audit-readiness and visibility for external stakeholders (e.g., auditors, DPOs)
-> Consistent experience across default and custom content in the platform