Sprinto Dashboard
Page cover

Overview

Manage, approve, and track compliance policies across your organisation with Sprinto’s centralised Policies module.

Sprinto helps you set up policies that are aligned with your compliance frameworks, track their approval and acknowledgment status, and ensure that your employees are always aware of the rules that govern your operations.

What are Policies?

Policies are documented rules that define how your organisation operates securely, ethically, and in compliance with regulatory requirements. They are essential for building trust with auditors, customers, and employees.

Each policy sets the what—the rule itself—while procedures define the how—the steps required to implement or comply with the rule. Sprinto also supports non-policy artefacts, such as ISMS scope documents or audit reports, which can be submitted as evidence.

Why use Policies in Sprinto?

  • Get pre-configured policies tailored to your selected framework

  • Create or upload policies and procedures with flexible options

  • Assign approval workflows and track employee acknowledgements

  • Map policies to relevant security controls for audit readiness

  • Sync with Confluence or SharePoint to import existing documentation

Supported document types

Type
Description

Policy

Defines an organisational rule (e.g. All staff devices must be encrypted).

Procedure

Describes how to implement a policy (e.g. Steps to enable encryption on Windows).

Document

Any supporting artefact, such as an audit charter, vendor risk assessment, or system description.

You can create these using Sprinto templates, write them from scratch, upload them as PDFs, or sync them from Confluence or SharePoint.

Who is it for?

Role
Responsibilities

Admins and InfoSec owners

Set up and maintain policies, assign reviewers, track acknowledgements, and monitor version history.

Employees

View and acknowledge assigned policies through the employee portal.

Auditors

Review policy documents and control mappings during compliance assessments.

Use cases

Scenario
Description

Initial setup

Create policies using framework-aligned templates to get started quickly.

Policy maintenance

Keep policies up to date, versioned, and reviewed by the right stakeholders.

Audit readiness

Map policies to controls and generate evidence reports for audit cycles.

Organisation-wide rollout

Assign policies to specific teams or business units using zones.

Documentation sync

Automatically pull policies and procedures from Confluence or SharePoint.

PreviousGlossaryNextHow it Works

Last updated