Compliance Checklist template thumbnail

LEGAL TEMPLATE

Compliance Checklist Template

Compliance tracking: requirements status, gap remediation, risk exceptions, audit history, and training.

Use this template

What's inside

Field

Details

Regulation / Standard

GDPR / SOC 2 / HIPAA / PCI-DSS / ISO 27001 / custom

Scope

What systems, products, or processes are covered

Assessor

Assessment Date

Next Review

Overall Status

In Progress

Summary

Where do we stand? How many requirements are met, how many have gaps, and what's the plan to close them?

Status

Count

% of Total

Compliant

Partial / In Progress

Gap

N/A

Requirements

One row per requirement. Keep it scannable — the detail goes in the evidence, not in this table.

ID

Requirement

Status

Evidence

Owner

Notes

R-001

What the regulation requires

Compliant

Link to evidence or control

R-002

Compliant

R-003

Partial

What's missing

R-004

Gap

R-005

N/A

Why N/A

Gaps & Remediation

For every Gap or Partial item above, what's the plan to fix it?

Req ID

Gap

Remediation

Owner

Deadline

Status

R-003

What's missing or incomplete

Specific action to close the gap

In Progress

R-004

Not Started

Risk Exceptions

Requirements you've decided to accept rather than remediate. Document the business justification and the approver — auditors will ask.

Req ID

Exception Rationale

Risk Accepted By

Review Date

Why we're not remediating and the residual risk

Name and title

Audit History

Date

Type

Findings

Status

Internal / External / Self-assessment

Summary of findings

Closed

Open

Training

Training

Audience

Frequency

Last Completed

Next Due

Status

Security awareness

All employees

Annual

Current

Data handling

Engineering + Support

Annual

Current

Regulation-specific

Relevant teams

As needed

Due

Other Legal templates