✦ AI-assisted · Included in all plans

Cyber security policies, without the headache.

AI-powered review of your existing policies, plus a library of ready-to-use templates. A full policy register tracks what you have, who owns it, and when reviews are due. Includes a unified security policy for smaller organisations where a single comprehensive document is more practical than separate policies for each topic.

Get Started All Features

Policy Library6 of 8 complete

🛡Acceptable Use PolicyReviewed Jan 2026Current

🔒Password & Access PolicyReviewed Jan 2026Current

📄Data Protection PolicyDue Apr 2026Review due

🚨Incident Response PolicyCreated todayNew

👥Remote Working PolicyReviewed Dec 2025Current

AI Policy Review

Reviewing: Data Protection Policy.docx

AI feedback

This policy covers the core requirements well. Three improvements suggested: (1) Add a section on data retention periods by category, (2) Clarify the process for handling subject access requests, (3) Include guidance on third-party data processors.

What's included

Essential policies for every UK organisation.

Cyber Assure includes templates for the core cyber security policies that organisations need in place - covering everything from acceptable use to incident response. All written in plain English, not legal boilerplate.

🛡

Acceptable Use Policy

How staff are expected to use IT systems, devices and the internet.

🔒

Password & Access Policy

Rules for creating and managing passwords and controlling access to systems.

📄

Data Protection Policy

How personal and sensitive data is collected, stored, shared and disposed of.

🚨

Incident Response Policy

What to do when a cyber incident occurs - who to contact, what to record, how to escalate.

👥

Remote Working Policy

Security requirements for staff working outside the office.

📦

Supplier & Third Party Policy

How to assess and manage the cyber security risks posed by suppliers and partners.

🎓

Security Awareness Policy

Requirements for staff training and awareness around cyber security.

🔄

Patch Management Policy

How software and devices are kept up to date with security patches.

📝

Unified Security Policy

A single comprehensive policy for organisations under 50 people — covering all essential topics in one document.

AI-powered assistance

Create new policies or improve the ones you have.

Most organisations either have no policies at all, or have outdated documents that don't reflect how they actually work. Cyber Assure's AI assistance helps with both situations.

✍️

Create from templates with AI assistance

Start from a Cyber Assure template and let AI help you tailor it to your organisation - filling in specifics, adjusting language, and making it relevant to how you actually operate.

🔍

Upload and review existing policies

Already have policies in place? Upload them and our AI will review them against best practice, identifying gaps, outdated content, and improvements - with specific, actionable suggestions.

📅

Review date tracking

Policies should be reviewed regularly - at least annually. Cyber Assure tracks review dates and alerts you when policies are due for update.

📋

Policy Register

A central register of all your policies — when each was created, last reviewed, who owns it, and when it is next due. Nothing falls through the cracks.

📋

Audit-ready documentation

Maintain a clear record of when each policy was created, updated, and reviewed — ready for auditors, regulators, or certification assessments.

Why policies matter

Cyber security policies set out the rules and expectations for everyone in your organisation. Without them, staff don't know what's expected, incidents aren't handled consistently, and you have no baseline to measure compliance against.

✓Required for Cyber Essentials certification

✓Demonstrates due diligence to funders and regulators

✓Protects the organisation in the event of a breach

✓Provides clear guidance to staff on expected behaviour

✓Supports insurance and procurement requirements