Best practice available off-the-shelf.

Every day seems to bring another required policy or procedure…

There’s no getting away from it. Doing information security is a documentation-heavy exercise. GDPR, PCI-DSS and ISO27001 all demand that you document every aspect of your security preparation; to get it right, you also have to follow in practice what you’ve written in theory. That means making sure your policies and procedures actually work, and making sure you can communicate them effectively to all your stakeholders.

Ask yourself

  • How do you keep on top of it all?

  • Who’s going to produce and maintain all of the paperwork you need to be compliant?

  • Where can you turn for advice?

  • How do you hear about best practice as it evolves?

  • What can you learn from other sectors and organisations?

Ask yourself

We can help

Our library contains all the policies and procedures you need for GDPR/UKDPA, ISO27001 PCI-DSS, CyberEssentials and the information security aspects of a wide variety of other sectors including finance, law and accountancy. As well as off-the-shelf documents, we have templates and training materials to help you use our best practice know.-how in your organisation without wasting time or money.

Data protection
Data protection

Policies, procedures and templates dealing with core compliance, classification and retention, DPIA and LIA, records of processing activity, privacy policies, data catalogues, crisis communications, DSARS and more.

Cybersecurity
Cyber-security

Documents dealing with all aspects of cyber-security as required by regulation and certification. Covers physical as well as digital security, and includes operational procedures, configuration policies and staff training.

Governance
Governance

A framework to help you govern and manage information security risk at all levels from board to shopfloor. Includes the core information security policy, staff guidelines and controls, acceptable use and monitoring, audit, supplier selection and compliance…

Certification
Certification

Policy cross-references and implementation guides for: GDPR/UKDPA/PECR; ISO27001:2013; PCI-DSS including service providers; and CyberEssentials as well as FCA Handbook and professional regulatory guidelines in law, accountancy and non-profit.

How it works

You pay for only the documents you need - there’s no minimum number. A single annual payment lets you use the model document however you want inside your organisation.

We can also advise you on which ones you should license for your specific objective and help you customise them to suit your needs. We offer consultancy and training to support your implementation of the library and your certification or compliance process.

How it works

What else do you get?

If you’re also a helpline customer, you get regular document updates to keep your licensed materials compliant as regulations and best practice evolve, together with our monthly bulletin highlighting changes in the threat environment and new legislation.

What else do you get?

Next steps

If you’re interested in our document library and would like to discuss how we can support you on that front please fill out our contact form. If you ask us to come to a meeting, we promise to bring biscuits.

Contact us
-->