Expert Advice Community

Home / ISO 27001 & 22301 / Procedure for document control - only for ISMS documents?

Guest

Procedure for document control - only for ISMS documents?

ISO 27001 & 22301
  Quote
Guest
Guest user Created:   May 12, 2016 Last commented:   May 12, 2016

Procedure for document control - only for ISMS documents?

ISO 27001 & 22301
With regards to the "Procedure for Document & Record Control" document--is this only referring to documents pertaining to the ISMS? In other words, it isn't referring to ALL internal and external documents, programming code (our business is on software development and consulting), invoices, etc. ? We are strictly talking about documents pertaining to the maintenance and guidelines around ISMS--yes?
0 0

Assign topic to the user

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.
Expert
Dejan Kosutic May 12, 2016

Answer:

ISO 27001 requires you to control only your ISMS documents; however if you find this system useful you can use it for all of the internal and external documents in your company.

So it is really up to you to decide to which documents does this procedure refer to - just make sure that you specify this clearly in the procedure.

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

May 12, 2016

May 12, 2016

Suggested Topics
Guest user Created:   Jun 24, 2022 ISO 27001 & 22301
Replies: 1
0 0

ISMS implementation
Guest user Created:   Oct 26, 2021 ISO 27001 & 22301
Replies: 1
0 0

Questions regarding ISO27001 documentation
Guest user Created:   Dec 11, 2020 ISO 27001 & 22301
Replies: 1
0 0

Question about documents