Ctrl+K
tatersecurity.com Open App

Collaboration Tools

Work together on compliance activities with task tracking, AI-assisted questionnaires, a community feedback board, and a policy library with PDF export.

Task Tracking

TATER Task Tracking showing task list with assignees, due dates, and status

The task tracking system provides a centralized view of all work items across compliance, security, and GRC modules.

Overview

  • Unified View: All tasks across modules (remediation, audit findings, control assignments, evidence requests) in one place
  • My Tasks: Personalized view showing only tasks assigned to you
  • Team View: See workload distribution across team members
  • Kanban Board: Drag-and-drop task management with customizable columns

Creating Tasks

Click New Task

Navigate to Tasks and click New Task to create a standalone task, or create tasks directly from controls, audit findings, or risk items.

Define the task

Enter a title, description, priority (Critical, High, Medium, Low), and category.

Assign and schedule

Assign the task to a team member and set a due date. Optionally link the task to specific controls, risks, or audit findings.

Track progress

Update task status as work progresses: To Do, In Progress, In Review, Done. Add comments and attachments to document progress.

Automatic Task Generation

Tasks are automatically generated from various TATER workflows:

  • Failed Controls: New failing controls can auto-generate remediation tasks
  • Audit Findings: Audit findings create corrective action tasks
  • Evidence Requests: Evidence collection requests appear as tasks for control owners
  • SLA Breaches: Overdue remediation deadlines generate escalation tasks
  • Exception Renewals: Expiring exceptions create renewal review tasks

Notifications

  • Email notifications when tasks are assigned to you
  • Reminders for upcoming due dates (7 days, 3 days, 1 day before)
  • Escalation notifications for overdue tasks
  • Updates when task status changes or comments are added

Questionnaires

TATER Questionnaires showing questionnaire builder with AI-assisted responses

Create and distribute compliance questionnaires with AI-assisted response generation for vendor assessments, customer inquiries, and internal evaluations.

Building Questionnaires

  1. Navigate to Questionnaires and click New Questionnaire
  2. Choose a template (vendor security, customer compliance, internal audit) or start from scratch
  3. Add questions organized by section. Supported question types:
    • Yes/No: Simple boolean with optional evidence upload
    • Multiple Choice: Select one or many from predefined options
    • Text: Free-form text response
    • File Upload: Request supporting documentation
    • Rating: Numeric scale (1-5 or 1-10)
  4. Configure scoring rules and passing thresholds
  5. Save the questionnaire as a reusable template

AI-Assisted Responses

TATER can auto-populate questionnaire responses based on your existing compliance data:

  • Auto-fill from scans: Questions about specific controls are answered using scan results
  • Evidence linking: Relevant evidence from the Evidence Library is automatically suggested
  • Narrative generation: AI generates narrative responses for descriptive questions based on your compliance posture
  • Review required: All AI-generated responses are marked for human review before submission
Tip

Use the AI auto-fill feature to draft responses to common vendor security questionnaires, then review and customize before sending. This can reduce questionnaire completion time significantly.

Distributing Questionnaires

  • Internal: Assign questionnaires to team members or departments
  • External: Generate a shareable link for vendors or customers to complete
  • Tracking: Monitor response progress, send reminders for incomplete questionnaires
  • Scoring: Automatic scoring against configured thresholds with pass/fail determination

Feedback Board

TATER Feedback Board showing feature requests with voting and status tracking

The feedback board provides a UserVoice-style system for collecting and prioritizing feature requests and improvement suggestions.

Features

  • Submit Ideas: Any user can submit feature requests or improvement suggestions with a title and description
  • Vote: Upvote or downvote existing ideas to signal priority. Each user gets one vote per idea.
  • Categories: Organize feedback by category (Feature Request, Bug Report, Improvement, Question)
  • Status Tracking: Admin can set status: New, Under Review, Planned, In Progress, Completed, Declined
  • Comments: Add context, use cases, or implementation suggestions on any feedback item
  • Admin Controls: OrgAdmin and SuperAdmin can manage statuses, merge duplicates, and respond to feedback

Submitting Feedback

  1. Navigate to the Feedback page or click the feedback widget on the dashboard
  2. Click New Idea
  3. Enter a title and detailed description of your suggestion
  4. Select a category
  5. Submit -- your idea appears on the board for others to vote on
Security

Feedback submissions are protected against field injection attacks. Input is sanitized before storage and display. Write rate limits are enforced per user tier to prevent abuse.

Policy Library

TATER Policy Library showing templates, generated policies, and PDF export options

Create, manage, and export security policy documents using pre-built templates or from scratch.

Template Browser

TATER includes 11 pre-built policy templates. The template browser provides:

  • Category filtering: Filter templates by category (Security, Privacy, Operations, Compliance)
  • Difficulty rating: 1-3 dots indicating template complexity
  • Framework mapping: Which compliance frameworks each template helps satisfy
  • Recommended badge: Highlighted templates recommended for your organization's compliance needs
  • Search: Full-text search across template titles and descriptions

Template Variable Engine

Templates use a {{varName}} placeholder syntax with typed variables:

Variable TypeDescriptionExample
textSingle-line text inputOrganization name, CISO name
dateDate pickerEffective date, review date
selectDropdown selectionReview frequency, classification level
textareaMulti-line text inputPolicy scope, additional requirements
numberNumeric inputRetention period, password length
Variable Caching

Common values (organization name, CISO, review period) are cached across templates during your session. When generating a second policy, previously-entered values are pre-filled, saving time.

Generating a Policy

  1. Click From Template on the Policies page
  2. Browse or search the template library
  3. Select a template and click Use Template
  4. Fill in the variable form -- variables are grouped by category (Organization, Document Control, Policy Details)
  5. Preview the generated document in the Markdown preview panel
  6. Click Save to save as a draft, or Export PDF for a formatted document

PDF Export

Export policies as professionally formatted PDF documents with:

  • Cover Page: Organization logo, policy title, effective date, and version
  • Table of Contents: Auto-generated from section headings
  • Body: Full policy content with formatted headers, lists, and tables
  • Back Page: Organization branding and contact information
  • Organization Branding: Uses your configured logo, company name, and accent colors

Managing Policies

  • Status: Draft, Under Review, Approved, Published, Archived
  • Version Control: Track policy revisions with version numbers
  • Organization Scope: Policies are scoped to individual organizations in multi-org environments
  • Re-generation: Saved policies retain their templateId and templateVars, allowing re-generation with updated variables

GRC Calendar

The GRC Calendar provides a unified timeline view of all compliance obligations, deadlines, and scheduled activities across every GRC module — so nothing falls through the cracks between quarterly audits, annual reviews, and ongoing control tests.

What Appears on the Calendar

The calendar aggregates due dates and scheduled events from across the TATER platform:

SourceWhat's Shown
Access ReviewsReview campaign due dates and overdue reviews
Control TestsScheduled test execution dates and overdue tests
Exceptions & WaiversException expiry dates requiring renewal
BCP/DR PlansScheduled test exercises (tabletop, simulation)
Security TrainingCampaign completion deadlines
Vendor AssessmentsScheduled periodic vendor risk reviews
Regulatory ChangesCompliance deadlines for new requirements
TasksTask due dates (when a due date is set)
AuditsPlanned audit start and end dates

Calendar Views

  • Month view: Traditional grid showing all events by date — best for spotting clusters of deadlines
  • List view: Chronological list of upcoming obligations — best for planning the next 30/60/90 days
  • Category filter: Show/hide event types (Access Reviews, Control Tests, Exceptions, etc.) to focus on specific areas

Deadline Alerts

  • Events within 7 days are highlighted in amber
  • Overdue events (past due date with no completion) are highlighted in red
  • The Tasks notification badge in the topbar reflects upcoming calendar obligations as well as open tasks
  • Configure notification reminders for specific event types in Settings → Notifications

Adding Events

Events appear automatically based on due dates set in each GRC module. To add a standalone calendar event (meeting, deadline, milestone), use Tasks with a due date — these appear on the calendar as task items.