Drata's Policy Center includes several policy templates, however, you may want to use your own policy that covers one or more of these templated policies. You can replace Drata’s policies with your own custom policy.

Admins, information security leads, and workspace managers will have access to create, approve and update policies within Drata.

You cannot be using an External Policy Manager like BambooHR or Confluence. If using an External Policy Manager, you will see an "Import External Policy" button rather than a "Create Custom Policy" button.

Navigate to the 'Policy Center' and select ‘Create Custom Policy’.

The ‘Create Custom Policy’ drawer opens. Proceed with filling in all the required information including policy source, details, personnel, and select the ‘Select policies’ button to choose which Drata policy templates to replace.

If one of the policies selected requires affirmation of the policy content, a modal with an affirmation checkbox is displayed. You’ll need to affirm the policy content before continuing.

And if a selected policy is also associated with Service Level Agreement (SLA) settings, the modal will also include SLA settings for you to configure. After entering your SLA settings select ‘Continue’.

After you’re done filling out the required fields, be sure to select ‘Create’ so that your custom policy is created.

Want to restore replaced policies? Learn more here.