Using the Policy Management Module
In the Policy Management module of your KCM GRC platform, you can store, manage, and distribute the policies that your organization is required to acknowledge and agree to. You can access the Policy Management module from the Policy Management tab of your navigation panel.
In this module, you can create policy management users and groups to assign policies to users in your organization. After you've created users and groups, you can create campaigns to send policies to your users. As your users acknowledge the policies, you can monitor the progress of each campaign.
See the sections below to learn how to create policy management users and groups, create policy management users, create policy campaigns, and monitor policy campaigns from your platform.
Jump to:
Step One: Create Policy Management Groups and Users
Step Three: Create Policy Campaigns
Policy Management User Roles
The four user roles below can view, create, manage, or edit policy management campaigns. These user roles can also create policy management users and groups. To learn about each user role's permissions, see our User Roles Guide.
- Account Administrator
- Policy Administrator
- Campaign Administrator
- Auditors (view only)
If existing users in your account need access to manage your policy management campaigns, you can add the Policy Administrator or Campaign Administrator user roles to their accounts. Alternatively, you can create new KCM GRC accounts and assign the Policy Administrator or Campaign Administrator user roles to the users who will be managing policy campaigns.
To learn how to edit user roles or add users to your account, see the Managing Users and Creating New Users sections of our How to Create and Manage KCM GRC User Accounts article.
Step One: Create Policy Management Groups and Users
In order to assign policy acknowledgments to your users, you must add your users to policy management groups. We recommend that you create policy management groups before you create policy management users. When you create policy management users, you can select a policy management group to add the users to.
To learn how to create policy management groups and users, see the Creating Policy Management Groups and Creating Policy Management Users sections of our How to Add Users and Groups to the Policy Management Module article.
Manage Users
From the Users tab of the Users & Groups page, you can add users to groups, disable users, view user information and user policy acknowledgment history, and update user information.
For more information, see the details below:
- Select the check box next to a user's name to select that user. You can also select the top check box to select all users on the page.
- Create New User: Click this button to create a new policy management user.
- Add Selected to Group: Click this button to add the selected users to the group that is selected in the Select a Group drop-down menu.
- Select a Group: Select a group from the drop-down menu that you want to add users to.
- Eye: Click this icon to view the user's information and their policy acknowledgment history.
- Pencil: Click this icon to edit the user's information.
Note: If you remove the user from any groups that they are a member of, the user's policy acknowledgment activity will also be removed from that group. The user will no longer appear under active or completed campaigns that the group is included in, unless the user is a member of another group that is included in the same campaign.
- Check box: Click this icon to enable or disable the policy management user. If you disable the user, the user will stop receiving campaign notification emails. However, the user's campaign progress will still appear under any campaigns that the user is included in. If you enable the user, the user will start receiving campaign notification emails again.
- Trash can: Click this icon to permanently delete the policy management user and the user's campaign history.
Step Two: Add Policies
Before you can create a policy campaign, you will need to add one or more policies to your KCM GRC platform. To add a policy, you can either upload the policy file or provide a link to an external policy file that is stored on your organization's intranet or a file sharing service.
For more information about uploaded and linked policies, see the subsections below.
Uploaded Policies
If you would like to upload your policy as a file, you can upload files that meet the requirements below:
- The file type must be one of the file types listed below:
- .png
- .jpg
- .jpeg
- .gif
- .bmp
- .tif
- .tiff
- .txt
- .rtf
- .eml
- .msg
- .csv
- .doc
- .docx
- .xls
- .xlsx
- .ppt
- .pptx
- The maximum file size for all file types, except for .pdf is 10MB.
- The maximum file size for .pdf files is 50MB.
- The maximum character count for file names is 100.
To upload a policy to your Policy Management module, follow the instructions below:
- From the navigation panel, navigate to Policy Management > Policies.
- Click the Upload Policies button. When you click this button, the Upload Policies window will open.
- Drag and drop files into the upload box, or click the upload box and select files.
- (Optional) In the Edit Uploaded Policies section, enter a name and version number for your policy. The policy name will be visible to your users when they receive notifications about the policy.
Note: If you do not enter a name for your policy, the policy name will be the name of the file that you upload.
- Click the Save Policies button.
Note: If you're uploading multiple files, each file will process individually. Therefore, it may take some time for your policies to save.
You can upload multiple policies at one time. Once you've uploaded policies to your account, you're ready to create a campaign.
Linked Policies
If you would like to add a linked policy to your platform, you can add any link that meets the requirements below:
- The link must include one of the protocols below:
- https://
- http://
- ftp://
- sftp://
- \\servername\
- file:\\\
- file://
- The maximum character count for links is 2000 characters.
To add a linked policy to your Policy Management module, follow the instructions below:
- From the navigation panel, navigate to Policy Management > Policies.
- Click the Link Policies button. When you click this button, the Link Policies window will open.
- In the Display Name field, enter a display name for the policy. This name will be displayed in KCM GRC and in campaign notification emails.
- In the Link field, enter the link to the policy.
- (Optional) In the Version field, Enter the policy's version.
- (Optional) In the Description field, enter a description of the policy.
- Click the Save Policies button.
You can add up to five linked policies at one time. Once you've added policies to your account, you're ready to create a campaign.
Step Three: Create Policy Campaigns
You can create policy campaigns to assign the policies you uploaded or linked to your users. To learn how to create a policy campaign, see the Creating Campaigns section of our How to Create and Manage Policy Campaigns article.
Monitor and Manage Campaigns
After your policy campaign begins, you can monitor the campaign's policy acknowledgments.
To learn how to monitor and manage a campaign, see the Monitoring and Managing Campaigns section of our How to Create and Manage Policy Campaigns article.
User Experience
If you've added one or more notifications to a policy campaign, your users will receive an email with a link to review and acknowledge each policy. A unique link will be generated for each user and each policy that is included in the campaign.
Depending on the type of policy that you've included in your campaign, the user interface will look like one of the two examples below.
Uploaded Policy
If your campaign includes uploaded policies, your users will see the policy in a policy viewer. For an example of an uploaded policy that your users can see when they open a policy from a campaign notification email, see the picture below:
In the policy viewer, your users can read the policy and select the I have read and understand the above policy check box. Then, to complete their policy acknowledgment, your users can click the Submit button.
Once the user clicks the Submit button, the user's status for this policy will change to Completed. You can review your users' statuses from the Users tab of the campaign View Campaign page. You can also view your users' statuses from the Reports tab of your navigation panel (Policy Management > Reports).
Linked Policy
For an example of a linked policy that your users can see when they open a policy from a campaign notification email, see the picture below:
When users receive the campaign notification email and click the policy link, the link will bring them to the screen above. This page instructs your users to click the link that you've included to the policy. Once your users have opened the link to the policy, they can select the I have read and understand the above policy check box. Then, to complete their policy acknowledgment, your users can click the Submit button.
Once a user clicks the Submit button, the user's status for this policy will change to Completed. You can review your users' statuses from the Users tab of the View Campaign page. You can also view your users' statuses from the Reports tab of your navigation panel(Policy Management > Reports).
Comments
0 comments
Article is closed for comments.