All fields that appear in the final report should be indicated as such with an icon on the page
Within an Assessment, the tool should clearly indicate/label inputs that are included in the HITRUST issued Report.
Andrew Petre commented
Related, it would be nice to have some guidance about where the MyCSF fields and narrative boxes complement or collide with the Org Overview and Scope document. We've had both feedback that it was (incorrectly) the same and that it was (incorrectly) different. I'm thinking specifically here of things like:
-description of the security organization
-security services outsourced
-the Systems page
It seems like the future is to bring all of Org Overview and Scope into the tool and fill it there instead, but until then, it's difficult to understand what to do with these fields in the tool.
If this idea is unrelated enough, I'll submit it separately.
This is very similar to the other idea in here about adding a label to the customer comments field if the user has opted to put them in the final report. Maybe these two ideas can be merged. I think Bimal's idea is a bit more expansive (covering more fields), but the concept is the same.