K
Policies & Governance Library07:31:50Sun, May 24
Compliance
Policies
All organizational policies with owner, version, last review, acknowledgement coverage, and next review due.
Active policies
32
Avg acknowledgement
97%
Reviews due < 90d
3
Frameworks aligned
6
Policy library
| Policy | Version | Owner | Last review | Next review | Acknowledged | |
|---|---|---|---|---|---|---|
| Information Security Policy | v8.2 | CISO | 2026-02-14 | 2027-02-14 | 98% | |
| Acceptable Use Policy | v6.0 | CISO | 2026-01-22 | 2027-01-22 | 100% | |
| Data Classification & Handling | v4.1 | DPO | 2026-03-08 | 2027-03-08 | 96% | |
| Incident Response Plan | v3.4 | CISO | 2026-04-12 | 2026-10-12 | 100% | |
| Vendor / Third-Party Risk | v5.0 | GRC | 2026-02-28 | 2027-02-28 | 94% | |
| AI Model Governance | v2.1 | Head of AI | 2026-05-04 | 2026-11-04 | 92% | |
| Records Retention | v7.3 | DPO | 2025-12-12 | 2026-06-12 | 97% | |
| Business Continuity / DR | v3.0 | VP Ops | 2026-04-22 | 2027-04-22 | 100% |
Framework alignment
HIPAA Security Rule99%
GDPR · Articles 25, 28, 32100%
SOC 2 Type II98%
ISO 27001:202296%
HITRUST CSF v1194%
NIST AI RMF 1.092%
Upcoming reviews
- Jun 12Records Retention v7.3 review due (DPO)
- Jul 08SOC 2 Type II audit kickoff
- Aug 22Annual penetration test (3rd party)
- Oct 12Incident Response tabletop drill
- Nov 04AI Model Governance v2.1 review