Expert Advice Community

Guest

What do we do when our existing policies do not match Conformio's policies?

  Quote
Guest
Evelin Created:   Jun 04, 2024 Last commented:   Jun 06, 2024

What do we do when our existing policies do not match Conformio's policies?

Some of the policies that we have to create according to the Statement of Applicability already exist as pages in our company wiki. The Conformio policies and our policies will not be the same, I rather expect ours to contain more detailed rules. Because we are stil working at the SoA, I cannot check what exactly is written in the policies provided by Advisera.
I know that there is the possibility to add custom paragraphs in the Conformio policies, but no custom headings can be added.
What do we do if our guidelines and Conformio's do not match? 

Assign topic to the user

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Expert
Rhand Leal Jun 06, 2024

In terms of the standard, the question here would be: 
 
"What do we do if our guidelines and Conformio's do not match?"
 
In this case, the customer should choose the document that best complies with the standard. Sometimes the user's document is more strict than the one provided by Conformio, and this is not a problem as the user can upload the PDF version of their own document to Conformio and use it instead of the Conformio template. 
 
An alternative can be that the user includes the link to the page where the document is published in the Conformio template and explains to the customer that if he fulfills the requirements for document management in their Wiki platform it wouldn't be a problem. However, this means they would have to manage updating two different documents (the Wiki page, and the Conformio document), so it might be too complicated.

Quote
0 1

Comment as guest or Sign in

HTML tags are not allowed

Jun 04, 2024

Jun 06, 2024