Can a module and/or alerting capability be built in the QA reservation system to allow External Assessors to see available QA blocks without having to “Modify” an existing customers reservation. This would assist in project planning with prospect HITRUST clients and allow Assessors to see new openings if we are trying to improve a clients QA reservation.

suggest related requirements that may be met with an uploaded document.
For example, a policy is loaded to support 00.a. A dropdown or picklist would be populated with other 00.a control requirements.

remove acccess to previous subscriber's data if non renewal

Add a button/option to the top menu bar (or in the "need help" pop-out to start a support incident. Currently customers need to either chat, email, or call in a support incident and there is no way to directly start a support incident.

SSO through OIDC or SAML. For a framework that places a heavy emphasis on role-based access controls and centralized identity management it seems only fitting that HITRUST implemented either OIDC or SAML.

Steps to reproduce: Filter on rejected inheritance requests. Click "select All". Click on "remove" to delete the rejected requests. Poof! All your inheritance requests, even those already approved, will be gone. You can verify this without actually deleting them by clicking over to other views and observing all inheritance requests are selected after just selecting the rejected requests. Recovering from this bug is a manual, time consuming process.

Add field in Assessment Reports and Custom Dashboards to show if a requirement statement has been inherited.

Under inheritance section, can a notice be populated to request user's confirmation to verify and confirm the removal of inheritance before removing inheritance, regardless of status. This will help avoid accidental removal of applicable approved inheritance.

Linked documents, when downloaded from the linked documents pop-up, are first previewed in the new document preview window, and when downloaded, are presented with a guid-style file name instead of the original name.

It would be helpful to organize the various authoritative sources on the factors page by type, similar to how the sources are organized in Microsoft's Trust Center. See pic for their example.

There is no clear way to create a help desk ticket. When I open the "Need Help?" window there are links to suggest resolving an issue but if the problem isn't listed there's no further link or instructions on how to open and create a ticket for someone to get back to me. You need to make this option available and intuitive.

Add RDS button to the top panel - not intuitive as to how to get back to the options page

CAP management, especially when creating cloned objects to simply run hypothetical scenarios or to plan for a future, is far too inefficient.
There needs to be the ability to "select" via a check box all of the "links" to a CAP and delete them all at once.
There also needs to be the ability to do the same at the CAP level so that they can be deleted en masse.
It should not take anywhere from 10-80 (!!!) individual clicks and actions to simply delete a CAP.

Similar to the customer's offline assessment, the external assessors would like to have this ability as well.

Add the ability to inherit specific control maturity levels (e.g., just policy, just policy and process). This will be very helpful for internal inheritance, for situations where the same policies are used by the whole organization.