Policies

Policies are required for compliance and are included in your score. InsiderShield supports:

• AI‑generated policies (paid plans)
• Uploaded existing policies (PDF)

Uploading Existing Policies

1. Go to Dashboard → Policies
2. Select a required policy type
3. Upload a PDF
4. The policy is marked Approved and counts toward coverage

Policy Status

• Approved: Counts toward compliance
• Draft: Created but not approved or missing file
• In Review: Optional workflow if you want approval steps

Framework Mapping

Policy requirements are framework‑specific. For example:

• SOC 2: Access Control, Incident Response, Vendor Management, etc.
• NIST CSF: Access Control, Risk Management, Asset Management, etc.

If a required policy is missing, it will show as Missing in the Policies page.