11 templates mapped to GDPR.
Employee acceptable use policy for Generative AI tools including ChatGPT, Claude, Copilot, and Gemini covering permitted uses, prohibited uses, data protection, and responsible GenAI usage in the workplace
Comprehensive AI training data governance covering data quality, provenance, bias examination, privacy protection, copyright compliance, and dataset documentation for EU AI Act Article 10, NIST AI RMF, and GDPR compliance
Comprehensive policy establishing data classification levels, handling procedures, labeling requirements, and lifecycle management integrated with DLP and compliance frameworks including GDPR, HIPAA, and PCI DSS.
Comprehensive acceptable use policy aligned with ISO 27001:2022, NIST SP 800-53 Rev. 5, and CIS Controls v8.1, featuring 2025 best practices for generative AI, BYOD, remote work, and modern workplace technology usage.
EU Data Act compliance - data sharing, cloud switching, and interoperability requirements
NIS2 Directive compliance for Essential and Important entities - comprehensive cybersecurity risk management
Digital Operational Resilience Act compliance for EU financial entities - comprehensive ICT risk management framework
Advanced policy for managing third-party, fourth-party, and supply chain cybersecurity risks through vendor classification, due diligence, continuous monitoring, and contractual controls. Includes 2025/2026 requirements for DORA ICT third-party risk, software supply chain security (SBOM/SLSA), AI/ML vendor assessment, and geopolitical risk management.
Complete GDPR compliance framework with 2025 enforcement trends and billion-euro fine case studies
Personal information protection aligned with Privacy TSC and GDPR requirements