Establish foundational IT rules by centrally managing the full policy lifecycle in the
IT Compliance app. Translate regulations such as SOC 2, HIPAA, or ISO 27001 into actionable
guardrails and replace disconnected spreadsheets and manual emails with an audit-ready system of
action.
Required Editions
Available in: Lightning Experience
Available in: Enterprise, Performance, and Unlimited
Editions with Agentforce IT Service.
Policy Management Tasks
The IT Compliance app standardizes how you author, distribute, and track organizational policies.
Draft and Author Policies: Use generative AI to extract clauses from legacy documents or create formal text based on regulatory sources and industry templates.
Author in Microsoft 365: Draft and revise policies directly in Microsoft Word. Edits sync back to Salesforce, which remains the system of record.
Distribute and Track Acknowledgments: Launch communication campaigns to notify employees
of new policies or updates to existing policies. Employees can review and digitally sign
documents within the Policy Hub on the portal.
Capture Audit Evidence: Maintain verifiable logs that record timestamps, user IDs, and specific policy versions for every digital signature.
Map Regulatory Traceability: Connect each regulation, external or internal, to the policies, controls, and risks that satisfy it for end-to-end traceability.
Set Up Policy Management Features for IT Compliance Configure the foundational settings required to translate regulatory requirements into actionable internal standards. Set up the policy framework by enabling authoring tools, integrating with Microsoft 365 for document collaboration, and configuring the communication channels used to distribute policies and track employee acknowledgments.
Work with Policies for IT Compliance Manage the end-to-end lifecycle of your internal standards to ensure they are accurate, organized, and audit-ready. Draft policy clauses, map them to regulatory requirements, and preview documents before activating policies. Then, track employee acknowledgments in real time to verify organizational compliance.
Did this article solve your issue?
Let us know so we can improve!
Loading
Salesforce Help | Article
Cookie Consent Manager
General Information
Required Cookies
Functional Cookies
Advertising Cookies
General Information
We use three kinds of cookies on our websites: required, functional, and advertising. You can choose whether functional and advertising cookies apply. Click on the different cookie categories to find out more about each category and to change the default settings.
Privacy Statement
Required Cookies
Always Active
Required cookies are necessary for basic website functionality. Some examples include: session cookies needed to transmit the website, authentication cookies, and security cookies.
Functional Cookies
Functional cookies enhance functions, performance, and services on the website. Some examples include: cookies used to analyze site traffic, cookies used for market research, and cookies used to display advertising that is not directed to a particular individual.
Advertising Cookies
Advertising cookies track activity across websites in order to understand a viewer’s interests, and direct them specific marketing. Some examples include: cookies used for remarketing, or interest-based advertising.
