we’ve got some questions about the documents required for ISO 27001:
On which documents do we have to write the information like “User, Version, Change History etc.”. In the document “00_Verfahren_zur_Lenkung_von_Dokumenten” is written that this proceedure encompasses all documents and records, stored in any possible form – paper, audio, video – if the documents are related to the ISMS. But which documents does it concern exaxtly?
Similar question: Which documents have to include the masterlist and which the incoming mail book?
And then we need to know, which information could be confidential? The entire certification prozess of the ISMS is’nt confidential but completely public for us.
We hope you can help and look forward to hearing from you.