Accessing the policies page
From the left-hand navigation panel click on Policies under the Governance header
If you are new to Secureframe, the Policies page will show you a list of templated policies that you can customize and publish
If your team has been using Secureframe, you will see a list of all of the policies being used within your organization
The preset filters above the table help you easily toggle between policies based on status: published, needs review and archived
You can sort all columns (with the exception of “Groups”) alphabetically/ chronologically by clicking on the column header
Filtering the Policies table
To filter the data in the policies table, click on the filter icon
You will now be able to filter the data based on all columns in the table
Creating a Custom View in the Policies table
You can customize the view of your table by clicking on the columns icon, and toggling the columns on or off in the right side panel
You can save this custom view by clicking save view
Working with Policy Groups
Secureframe allows you to assign a policy to one or more groups (e.g., “New Hires,” “Employees,” “Contractors”). This enables targeted delivery of policies to specific cohorts of users.
Why Groups Matter
Targeted Distribution: Assign policies to only the relevant users—e.g., developers, contractors, or compliance teams—using groups.
Reporting & Tracking: The “Acceptance Rate” column shows how many assigned users have acknowledged the policy, calculated based on users in the assigned groups.
Example Use Cases
Scenario | Setup | Result |
New Hire First-Day Acknowledgment | Create a New Hires group; assign policy with “Require acceptance” checkbox; add newcomers to it | New hires immediately receive the policy upon joining |
Annual Re-Acknowledgment for All Staff | Create an Employees group (including new hires); assign the same policy again | All employees are automatically prompted to re-acknowledge every 12 months based on individual start dates |
This approach ensures both immediate onboarding acknowledgment and annual reminders—handled entirely through groups, without needing a separate policy per workflow.
How to Assign Groups (Step-by-Step)
Navigate to the Policies page and select a policy to edit.
In the right-hand panel, locate the Policy Groups dropdown.
Check the boxes next to the relevant groups (e.g., New Hires, Employees).
Save and publish the policy with “Require employee acceptance” enabled. Users in those groups will receive it according to their onboarding timeline.
Bulk assign owners to Policies
In order to bulk assign owners to policies
Select the policies you want to assign owners to, and click assign owner in the bulk action bar in the bottom and choose the person you want to assign
Acceptance rate column
The new Acceptance Rate column shows how many people were assigned the policy through the groups assigned to a given policy (the denominator) versus how many have actually accepted it (the numerator). This provides a quick way to see overall engagement with each policy.
Mapped Frameworks Column
The Mapped Frameworks column highlights any compliance frameworks that are associated with a given policy. This makes it easy to see which regulations, standards, or guidelines the policy is tied to (e.g., HIPAA, GDPR, ISO). Frameworks in this column are displayed based on the framework groups that were added to the policy.
Exporting a Policy Table View
In order to export all policies in the table view, you can click on export icon in the top right corner
In order to export specific policies in the table view, you can select just the policies you want to export in the table view and then click on export icon in the top right corner
Exporting Policies to PDF or DocX (individual)
To export individual policies to PDF or DOCX, click on the three dot menu on the right of the policy and click export to PDF or export to DOCX
Exporting Policies to PDF or DocX (bulk)
To bulk export policies to PDF or DOCX, select the policies you want to export and select export to PDF or export to DOCX on the bulk action bar at the bottom of the page
Export Policy User Acknowledgements
If you need additional proof outside of Secureframe that policies were acknowledged by users on specific dates, you can also export those reports using our Data Room.
Head to the Data Room
Click Export Data in the top right corner
Within the modal, select Policy Acceptances, then Export.
Once the export is completed, it will be located within the Exports folder under the date of the export (for example Exports > 2024-12-18)
Note: This export includes only active, in-scope employees. Acknowledgment records for offboarded (inactive) employees are not included. If you need historical acknowledgment data for offboarded personnel, please contact Secureframe support.
Frequently Asked Questions (FAQ)
Can we download or export policies as a DOC file if the policies were created outside of Secureframe and uploaded as a PDF?
No. Policies that were created outside of Secureframe and uploaded as PDFs can only be downloaded in their original PDF format. Secureframe does not convert externally uploaded PDFs into DOC files.