Best practice available off-the-shelf.
Every day seems to bring another required policy or procedure…
There’s no getting away from it. Doing information security is a documentation-heavy exercise. GDPR, PCI-DSS and ISO27001 all demand that you document every aspect of your security preparation; to get it right, you also have to follow in practice what you’ve written in theory. That means making sure your policies and procedures actually work, and making sure you can communicate them effectively to all your stakeholders.
How do you keep on top of it all?
Who’s going to produce and maintain all of the paperwork you need to be compliant?
Where can you turn for advice?
How do you hear about best practice as it evolves?
What can you learn from other sectors and organisations?
We can help
Our library contains all the policies and procedures you need for GDPR/UKDPA, ISO27001 PCI-DSS, CyberEssentials and the information security aspects of a wide variety of other sectors including finance, law and accountancy. As well as off-the-shelf documents, we have templates and training materials to help you use our best practice know.-how in your organisation without wasting time or money.
Policies, procedures and templates dealing with core compliance, classification and retention, DPIA and LIA, records of processing activity, privacy policies, data catalogues, crisis communications, DSARS and more.
Documents dealing with all aspects of cyber-security as required by regulation and certification. Covers physical as well as digital security, and includes operational procedures, configuration policies and staff training.
A framework to help you govern and manage information security risk at all levels from board to shopfloor. Includes the core information security policy, staff guidelines and controls, acceptable use and monitoring, audit, supplier selection and compliance…
Policy cross-references and implementation guides for: GDPR/UKDPA/PECR; ISO27001:2013; PCI-DSS including service providers; and CyberEssentials as well as FCA Handbook and professional regulatory guidelines in law, accountancy and non-profit.
How it works
You pay for only the documents you need - there’s no minimum number. A single annual payment lets you use the model document however you want inside your organisation.
We can also advise you on which ones you should license for your specific objective and help you customise them to suit your needs. We offer consultancy and training to support your implementation of the library and your certification or compliance process.
What else do you get?
If you’re also a helpline customer, you get regular document updates to keep your licensed materials compliant as regulations and best practice evolve, together with our monthly bulletin highlighting changes in the threat environment and new legislation.