340 results found
-
Applications & Databases are mandatory fields in the Platforms/Systems table, mark them as such when the table is being filled out.
When completing the Platforms/Systems table, some fields are marked mandatory. The Applications & Databases fields are not. However, HITRUST QA requires something to be included here. Please mark these fields as mandatory up front to minimize these QA tasks/findings.
2 votes -
Move Illustrative Procedures Link to Main Control Page for Easier Access
Move the linked illustrative procedures button/link to the main expanded view of the individual control, as oppose to having to click "More Info".
10 votes -
Selecting filtered inheritance requests should not select ALL inheritance requests
Steps to reproduce: Filter on rejected inheritance requests. Click "select All". Click on "remove" to delete the rejected requests. Poof! All your inheritance requests, even those already approved, will be gone. You can verify this without actually deleting them by clicking over to other views and observing all inheritance requests are selected after just selecting the rejected requests. Recovering from this bug is a manual, time consuming process.
1 vote -
Organize compliance factors by type
It would be helpful to organize the various authoritative sources on the factors page by type, similar to how the sources are organized in Microsoft's Trust Center. See pic for their example.
2 votes -
Adding a "LINKAGE" sheet in uploaded Excel workbooks tells MyCSF where to link the sheet throughout the assessment
Linking evidence throughout an assessment is time-consuming. To make it a tiny bit easier, and specifically when adding an Excel file as evidence, MyCSF should look for a LINKAGE worksheet in the uploaded workbook. If found, MyCSF should use the contents of that LINKAGE sheet to know where to link the workbook throughout the assessment.
The contents of the linkage sheet could be as simple as:
• column A: BUID or CVID of the requirement to link the workbook to
• column B: Link to the Policy level (Yes/No)
• column C: Link to the Process level (Yes/No)
• column…1 vote -
5 votes
-
API for External Assessor
Similar to the customer's offline assessment, the external assessors would like to have this ability as well.
2 votes -
support needed
having errors when clicking on details view for myCSF HITRUST controls and details. Please advise if you can see that in logs and how I can document the error.
1 vote -
2 votes
-
Ability to inherit just the policy level (or just the policy and process levels)
Add the ability to inherit specific control maturity levels (e.g., just policy, just policy and process). This will be very helpful for internal inheritance, for situations where the same policies are used by the whole organization.
1 vote -
Data Clean Up
remove acccess to previous subscriber's data if non renewal
4 votes -
Configurable alerts in the QA reservation system of newly available QA blocks
Can a module and/or alerting capability be built in the QA reservation system to allow External Assessors to see available QA blocks without having to “Modify” an existing customers reservation. This would assist in project planning with prospect HITRUST clients and allow Assessors to see new openings if we are trying to improve a clients QA reservation.
8 votes -
open support incident via standalone button
Add a button/option to the top menu bar (or in the "need help" pop-out to start a support incident. Currently customers need to either chat, email, or call in a support incident and there is no way to directly start a support incident.
13 votes -
Add field in Assessment Report to show if requirement statement has been inherited
Add field in Assessment Reports and Custom Dashboards to show if a requirement statement has been inherited.
6 votes -
Inheritance - verify before removal
Under inheritance section, can a notice be populated to request user's confirmation to verify and confirm the removal of inheritance before removing inheritance, regardless of status. This will help avoid accidental removal of applicable approved inheritance.
7 votes -
Related Requirements
suggest related requirements that may be met with an uploaded document.
For example, a policy is loaded to support 00.a. A dropdown or picklist would be populated with other 00.a control requirements.6 votes -
Issue with offline upload
Hello, I'm having issues uploading the offline assessment to Opt1 – Shearwater Health 2022 Validated Assessment. It's saying 0 rows saved and 0 blank rows were skipped, but not updating the scores
2 votes -
How
There is no clear way to create a help desk ticket. When I open the "Need Help?" window there are links to suggest resolving an issue but if the problem isn't listed there's no further link or instructions on how to open and create a ticket for someone to get back to me. You need to make this option available and intuitive.
6 votes -
RDS
Add RDS button to the top panel - not intuitive as to how to get back to the options page
2 votes -
CAP Usability Issues
When using the Filter on CAPs there are some serious usability issues. First, the filter does not dynamically update so when you, for example, filter on Status of "Not Started" and then update said status you are returned to the list with the newly updated CAPs which now have a status of "Started - On Track" displayed in the list, so it requires the user to navigate down every time they enter a new status update for a different record.
Furthermore, the list is limited so you must click the "Load More" button. So after filtering you are presented with…6 votes
- Don't see your idea?