I am a bit confused with getting conflicting information. In your White Paper: Checklist of Mandatory Documentation Required by 27001 it says that the Procedure for document control is not mandatory but in the video by Dejan on Conformio it says that it is one of four mandatory procedures for 27001 - it is concerning that the information is contradictory - can someone tell me which rule to follow? Also I am finding differences between the templates and the document run through on the video with Information Security Policy being a good example. Which is out of date?
Answer: Please consider the information in the white paper. Current version of ISO 27001 do not require a documented procedure for control of documents and records. Regarding the differences between the templates and the information on the video tutorials we will verify this situation.