Client Guide

Documents: Policies, Procedures & Reports

The Documents tab is your built-in compliance wiki. Every policy, procedure, plan, and report lives here — auto-generated from the framework and editable at any time.

What's in the Documents tab

  • Controls & Policies — one page per CyFun control, pre-filled with guidance and editable placeholders
  • Procedures — step-by-step operational documents
  • Plans — incident response, business continuity, and similar planning documents
  • Reports — compliance snapshots generated from the Reports tab
  • Gap Snapshots — dated gap tables created from the Roadmap

Navigating the tree

The Documents tab opens in a split-pane layout. The left panel shows a collapsible folder tree. Top-level folders (Controls & Policies, Reports, Procedures, Plans) are open by default. Click any document name to open it in the right pane.

Documents tab with split-pane layout: left panel shows folder tree with Controls and Policies expanded and Security Policy highlighted, right pane shows the Security Policy document with editable sections
The left tree stays in place while you browse — click any document to open it on the right.

On mobile, the tree is hidden. Use the search (Cmd+K / Ctrl+K) to find documents by name.

Opening a document from the Roadmap

When a Roadmap action has a linked document (for example, "Security Policy" links to the Security Policy wiki page), an Open document button appears at the top of the detail panel. Click it to jump directly to the document — it opens in the Documents split-pane view.

Item detail panel for Security Policy with a blue Open document button at the top, followed by status buttons and evidence items
The Open document button in the Roadmap panel takes you straight to the linked policy or procedure.

Editing documents

Every document is editable. Open a document and click Edit (top-right of the page header) to switch to edit mode. Documents use Markdown with structured placeholders — fill in the highlighted fields (organisation name, dates, contacts) and the platform tracks which placeholders still need values.

When you're done, click Save to publish the new version. All versions are saved in the page history (accessible from the three-dot More menu).

Placeholder fields shown in orange need to be filled in before the document is considered complete. The compliance engine tracks these and adjusts your score accordingly.

Creating new documents

Click the + button at the top of the tree panel (or use the New document link on the Documents welcome screen). Give the document a title, choose a slug (the path in the tree), and start writing in Markdown.

Custom documents appear in the tree alongside framework-generated pages. Use the reports/ prefix for audit-related documents or plans/ for planning documents to keep them organised.

Exporting documents as PDF

Open any document, then use the More options menu (three dots) and click Export PDF. Your browser's print dialog opens — choose Save as PDF. The exported PDF includes the organisation name, page title, and date in the header.

See the full guide: Exporting a compliance report →

Continue with

Roadmap (Kanban board)

Assign backlog items to sprints and collect evidence

Export a report

Generate a compliance PDF for your auditor
TARS