You are here:
Prerequisites for IT Compliance Features
Before you enable IT Compliance features in Salesforce Go, make sure your org has the required licenses, platform features, and integrations turned on. Review these prerequisites to avoid setup errors and ensure your compliance team has access to every feature they need.
Required Editions
| Available in: Lightning Experience |
| Available in: Enterprise, Performance, and Unlimited Editions with Agentforce IT Service. |
Some prerequisites are required for the core compliance workflows; others are required only if you turn on specific capabilities such as AI, external file storage, or in-Word policy authoring.
For the complete breakdown of what each add-on includes and which permission sets are bundled, see Permission Set Licenses for IT Compliance.
Required Platform Features
IT Compliance builds on standard Salesforce platform capabilities. Turn on these features in your org before configuring the corresponding IT Compliance workflow.
| feature | used by |
|---|---|
| Salesforce Files | Stores files attached to evidence artifacts. Files attached during artifact submission live in Salesforce Files and lock when the artifact is verified. |
| Salesforce Surveys | Powers stakeholder feedback collection during risk evaluations. Required for the formal risk evaluation workflow where compliance managers send structured surveys to IT and business stakeholders. |
| Action Plans | Provides the framework for remediation action plans based on action plan templates. |
| Business Rules Engine | Calculates risk scores for inherent and residual risk and powers configurable scoring logic. Factors in control effectiveness to determine residual risk. |
| Stage Management | Defines stages and step-level criteria for compliance evidence requests and evidence artifacts so records move through your workflow in a controlled way. |
| SLA Management | Tracks due dates on evidence requests, escalates at-risk requests, and reports on compliance to your internal SLAs. |
| Notifications | Sends evidence and audit notifications to fulfillers, reviewers, and admins across email, in-app, Slack, and Microsoft Teams channels. |
Optional Integrations
Turn on these integrations only if your compliance program uses the corresponding workflow.
| integration | when to turn it on |
|---|---|
| Salesforce Compliance Connector for Microsoft Word | If policy authors draft and review compliance policies directly in Microsoft Word with bi-directional sync to Salesforce. |
| Einstein Generative AI | If your team uses AI-assisted policy drafting, AI clause extraction during policy import, or AI-generated risk summaries. Required when the AI Compliance add-on is in use. |
| Files Connect | If fulfillers attach evidence artifacts from external storage such as Google Drive, OneDrive, or SharePoint instead of uploading files directly. |
| Data Cloud | If you plan to report on compliance data through Data Cloud or unify compliance records with data from other systems using the Compliance Data Model Objects. |
| Employee Portal (Experience Cloud site) | If employees read and acknowledge policies or respond to evidence requests through the Employee Services Portal. |
| Actionable Relationship Center | If your team needs visual risk graphs that show how risks, controls, policies, and assets relate to each other. |
| Compliant Data Sharing | If your org requires granular, participant-level sharing for sensitive compliance records such as risks, controls, policies, regulations, and business operations processes. |
