Set Exceptions on Checks
Add, approve, reject, and remove exceptions on individual checks within a compliance control.
Check exceptions let you exclude one check from your compliance score while keeping the rest of the control active. Use them when a control mostly applies to your organization but one specific check doesn't.
For the four exception types and the space-level settings that affect approval, read Customize Compliance.
Set an exception on a check
-
From a space, select Compliance in the side navigation, then select the framework. Scroll to the list of controls.
-
Select the control containing the check, then check the box beside that check.
-
Select SET EXCEPTION.
-
Choose the exception type and time period, write a justification, then select SAVE EXCEPTION.
Approve or reject an exception
An exception's approval flow depends on your space's exception settings. By default, an exception takes effect when it's created and a different team member approves or rejects it as an audit step. Approving keeps the exception. Rejecting removes it and re-enables the check.
-
From the framework's controls list, select the control containing the excepted check, then switch to the Exceptions tab.
-
Select Approve to keep the exception or Reject to remove it.
Re-enable a check
-
From the framework, select the control containing the check.
-
Select the check with the exception.
-
Select REMOVE EXCEPTION AND ENABLE, then confirm with YES, ENABLE THE CHECK.