Policy Management

Search

Overview of the Policies Page

Accessing the policies page

  • From the left-hand navigation panel click on Policies under the Governance header 
  • If you are new to Secureframe, the Policies page will show you a list of templated policies that you can customize and publish 
  • If your team has been using Secureframe, you will see a list of all of the policies being used within your organization 
  • The preset filters above the table help you easily toggle between policies based on status: published, needs review and archived
  • You can sort all columns (with the exception of “Groups”) alphabetically/ chronologically by clicking on the column header

Filtering the Policies table

  • To filter the data in the policies table, click on the filter icon
  • You will now be able to filter the data based on all columns in the table

Creating a Custom View in the Policies table

  • You can customize the view of your table by clicking on the columns icon, and toggling the columns on or off in the right side panel
  • You can save this custom view by clicking save view

Working with Policy Groups

Secureframe allows you to assign a policy to one or more groups (e.g., “New Hires,” “Employees,” “Contractors”). This enables targeted delivery of policies to specific cohorts of users. 

Why Groups Matter

  • Targeted Distribution: Assign policies to only the relevant users—e.g., developers, contractors, or compliance teams—using groups.

  • Reporting & Tracking: The “Acceptance Rate” column shows how many assigned users have acknowledged the policy, calculated based on users in the assigned groups.

Example Use Cases

Scenario Setup Result
New Hire First-Day Acknowledgment Create a New Hires group; assign policy with “Require acceptance” checkbox; add newcomers to it New hires immediately receive the policy upon joining
Annual Re-Acknowledgment for All Staff Create an Employees group (including new hires); assign the same policy again All employees are automatically prompted to re-acknowledge every 12 months based on individual start dates

This approach ensures both immediate onboarding acknowledgment and annual reminders—handled entirely through groups, without needing a separate policy per workflow.

How to Assign Groups (Step-by-Step)

  1. Navigate to the Policies page and select a policy to edit.

  2. In the right-hand panel, locate the Policy Groups dropdown. 

  3. Check the boxes next to the relevant groups (e.g., New Hires, Employees).

  4. Save and publish the policy with “Require employee acceptance” enabled. Users in those groups will receive it according to their onboarding timeline.

Bulk assign owners to Policies

  • In order to bulk assign owners to policies
  • Select the policies you want to assign owners to, and click assign owner in the bulk action bar in the bottom and choose the person you want to assign

Acceptance rate column

The new Acceptance Rate column shows how many people were assigned the policy through the groups assigned to a given policy (the denominator) versus how many have actually accepted it (the numerator). This provides a quick way to see overall engagement with each policy.

Mapped Frameworks Column

The Mapped Frameworks column highlights any compliance frameworks that are associated with a given policy. This makes it easy to see which regulations, standards, or guidelines the policy is tied to (e.g., HIPAA, GDPR, ISO). Frameworks in this column are displayed based on the framework groups that were added to the policy.

Exporting a Policy Table View

  • In order to export all policies in the table view, you can click on export icon in the top right corner

  • In order to export specific policies in the table view, you can select just the policies you want to export in the table view and then click on export icon in the top right corner

Exporting Policies to PDF or DocX (individual)

  • To export individual policies to PDF or DOCX, click on the three dot menu on the right of the policy and click export to PDF or export to DOCX

Exporting Policies to PDF or DocX (bulk)

  • To bulk export policies to PDF or DOCX, select the policies you want to export and select export to PDF or export to DOCX on the bulk action bar at the bottom of the page

Export Policy User Acknowledgements

If you need additional proof outside of Secureframe that policies were acknowledged by users on specific dates, you can also export those reports using our Data Room.

  1. Head to the Data Room
  2. Click Export Data in the top right corner
  3. Within the modal, select Policy Acceptances, then Export.

Once the export is completed, it will be located within the Exports folder under the date of the export (for example Exports > 2024-12-18)

Was this article helpful?

Have more questions? Submit a request

Comments

0 comments

Article is closed for comments.