Answer: The place to include references in our templates is section 2 (Reference documents). Applicable controls to each template are already included in this section, so you should check if the references you want to include are already there, or if you should add the ones you wish.
Also we are currently going through who our interested parties are, other than going through each of the UK legalisation in detail is any other of reviewing this element of the task?
Answer: Besides entities that issue laws your organization must comply with, you also should consider for interested parties employees, customers and suppliers that can affect, or be affected by your ISMS
This article will provide you further explanation about interested parties:
- How to identify interested parties according to ISO 27001 and ISO 22301 https://advisera.com/27001academy/ knowledgebase/how-to-identify-interested-parties-according-to-iso-27001-and-iso-22301/