For timesheets and QA Sheets - it would be best to have this done electronically. Especially since we are remote - it's easier to have Executive and QA use the same document and electronically sign/initial.

for N/A requirements, change to a single "agree with N/A"

Remove edit check that requires client to upload a rep letter in order to submit a domain to the assessor. This is too early in the process to provide a rep letter - currently, clients must upload a fake / placeholder document as a workaround.

It would be great if there was an option to sort/filter requirements based on the Unique ID, not just the level or control.

Add a checkbox or field for external reviewers to sign off on requirement statement after they have reviewed them.

Within an Assessment, the tool should clearly indicate/label inputs that are included in the HITRUST issued Report.

Capability that allows a user to submit a reverted Question to their External Assessor without waiting for the Domain and/or Assessment to be completed.

Can we add an enhancement to add the control reference to the requirement statements layout. Like the below. People have a hard time of telling what the requirements are related to without the name. Example is the constant confusion on 09.x and 09.y controls. They are all e-commerce and online transaction but some of them do not have either of those terms within the statement so people think it is just a standalone control.

09.x Electronic Commerce Services
!1579275197061-0.png!

Date of Submission should be when HT approves Assessment

MyCSF will automatically delete the draft report files 7 days after the final reports are posted.

Provide assessors the ability to revert entire domains back to clients- even if the feature was only available when the status of the domain is "assessor review pending". This would avoid needing to request HITRUST to revert domains if clients accidentally hit submit too early.

Feature allowing a user to edit or remove a diary entry

The ability for customers to create their own tags on the Requirement Statements and sort/filter based upon their custom tags.

There needs to be a half-way point between the requirement statement and domain level for delegating responsibilities. It would be nice to have the ability to select multiple requirement statements within a domain and then delegate those statements rather than completing each one individually.

Functionality for someone to either select recipients or use the "@" symbol to quick search for them like Outlook. Any individuals tagged would be notified of a Diary concerning them.

The capability should also be present at the general Assessment level without being associated with an Assessment Statement.

External people should be able to @ HITRUST users that have commented previously in the chain.

Make the "Expand All" button a toggle button. Currently the "Expand All" button can only be used to expand all of the requirements in the active domain. I'd like for it to change to "Collapse All" after it has been pressed, allowing the users to collapse all of the requirements in the domain.

Phase I: Saving at the requirement level is extremely tedious. Please look into automatically saving when you navigate to the next requirement in the domain. Otherwise users will have to click save on every single requirement independently.

configurable by users above assessment check box.