1. Governance Risk and Compliance Management Policy
2. Information Security Management Program
3. Information Security Policy
4. Information Security Risk Management Framework
5. Personal Data Protection Policy
6. Acceptable Use Policy
7. Access and Account Management Policy
8. Asset Disposal and Sanitization Policy
9. Business Continuity Plan for remote only operation
10 Business Continuity Plan with office operation
11. Change and Patch Managemt Policy 1.0
12. Data Encryption Policy
13. Data Retention and Destruction Policy
14. Disaster Recovery Plan
15. HR Security Policy
16. Incident Response Plan
17. Mobile Device Management and Remote Access Policy
18. Physical Security Policy
19. Risk Assessment tool NIST CSF MAPPINGS
20. Secure Configuration and System Hardening Policy
21. Secure SDLC
22. Security Audit and Monitoring Policy
23. Security Awareness Training Policy
24. Systems and Networking Security Policy
25. Third-Party Security Management Policy
26. Third Party Security Management Procedure
27. Third-party Information Security Risk Assessment Questionnaire
28. Vulnerability Management Policy
GRC docs is a leading provider of governance, risk, and compliance toolkits and templates. Our comprehensive suite of resources empowers businesses to effectively manage their governance practices, mitigate risks, and ensure compliance with regulatory requirements.
Our company was founded in 2014 in Sydney, Australia by Swapnil Wale. Our founder has a bachelor’s in Computer Science and a masters in Computer Applications.
With our user-friendly platform, organizations can easily access a wide range of customizable toolkits and templates that facilitate the implementation of best practices in governance, risk management, and compliance.
1. Is it safe to provide my credit card/payment information?
YES, our store is powered by Shopify which is one of the most trusted e-commerce platforms. Shopify is certified Level 1 PCI DSS compliant. All Shopify stores include an SSL certificate that uses industry standard 256-bit encryption technology. This is the same level of encryption used by large banks to keep your information secure.
2. Will I get support if I have an issue or a query?
Definitely, yes, we have a dedicated support team who will happily assist. It can be an issue or any help with our templates. Our support policy is to address the customer query ASAP regardless of the product they purchase.
3. Is this a one time payment or monthly membership?
All our products are ONE TIME PAYMENT. We do not offer subscriptions so whatever you pay will be be one time.
4. How do I access my downloads?
After you checkout, you will be taken to a download page. You will also get a download link in your email.
5. What if the download link does not work?
Sometimes links can be blocked by a corporate firewall so please try using the link from a different network or from home. If you still cannot access drop an email to support@grc-doc.com and use our "Contact Us" Page.
6. Do you provide refunds?
We will REFUND the full amount in the following scenarios -
- Templates don't work as described, and we cannot fix your problem in a reasonable time.
- Templates are missing from your download and we cannot provide you the same templates shown on the site.
- You are not able to access the download. We will try to provide different mediums but if none of them work for you then we will refund your amount. Check our Refund Policy.
7. What are the different types of payments accepted?
We accept PayPal, Apple Pay, Google Pay, Master Card , Amex and VISA.
8. Do these templates work with Excel?
Yes, the templates are built using MS Office so will work on Excel.
9. Can the templates be customized or edited?
Yes, our templates can be edited and changed as you need. But reselling of templates is not allowed.
10. Why do you have a logo on the documents?
The logo is only visible on the template images. We do not use logos on templates so you can customize the template as needed.
Business Continuity Plan For Remote-Only Operation
It outlines procedures and protocols to ensure the seamless functioning of a company when employees are working remotely. It identifies key personnel responsible for various tasks, such as IT support, communication management, and decision-making.
Disaster Recovery Plan
It serves as a structured framework for an organization to prepare for and respond to unexpected disruptions or disasters that could potentially impact its operations. It typically begins with an assessment of potential risks and vulnerabilities, identifying key threats such as natural disasters, cyberattacks, power outages, or equipment failures.
Incident Response Plan
It is designed to guide an organization's response to cybersecurity incidents, such as data breaches, malware infections, or network intrusions. The plan typically begins with a comprehensive inventory of potential threats and vulnerabilities, assessing the organization's assets and identifying critical systems and data.
Secure Configuration and System Hardening Policy
It establishes guidelines for configuring and managing IT systems to enhance security posture and reduce vulnerabilities. This policy begins with defining standards for secure configurations across various components of the IT infrastructure, including operating systems, network devices, databases, and applications.
Third-Party Security Management Policy
It outlines an organization's guidelines and procedures for managing the security risks associated with third-party vendors, suppliers, or service providers. This policy begins with a comprehensive assessment of the organization's reliance on third parties and the potential security threats they pose to the organization's systems, data, and operations.
