ISO Controls

131 controls. AI generates the documentation.

ISO 27001 and ISO 42001 require you to address every Annex A control. AmpliFlow has all controls built in. AI generates five documentation fields per control, and you can batch-generate an entire standard with one button.

Book a demo See the AI assistance

Companies managing ISO controls with AmpliFlow

Built-in standards

The controls are already there. You decide.

No manual data entry. Create a control set from a standard, and all controls are populated with name, code, category, and description from the standard.

ISO 27001:2022

93 controls

Organizational, People, Physical, Technological

All Annex A controls for information security. Available in Swedish and English.

ISO 42001:2023

38 controls

Policies, Internal org, Resources, Impact assessment, Lifecycle, Data, Information, Use, Third-party

All Annex A controls for AI management systems.

Learn more about ISO 27001 → Learn more about ISO 42001 →

AI assistance

Five fields per control. AI generates, you review.

Each control has five documentation fields. AI generates content based on the control's standard text and your company context. Fields build on each other: the SoA text considers the requirement explanation and the internal description.

Requirement explanation

AI explains what the control requirement means in practice, grounded in the control's name, code, and category.

Internal description

AI generates a description of how your organization implements the control, based on your company context.

SoA description

AI creates an auditor-friendly SoA text justifying how the control is met.

In-depth information

AI provides detailed background and guidance about the control.

Tool

AI recommends concrete tools and methods for implementing the control.

Batch generation: an entire standard with one button

Press "Batch generate" and the AI works through all applicable controls, generating all five fields per control. Pausable, resumable, and skips controls that already have content.

Want to know how we govern our own AI usage? Read our AI transparency page →

Learn more about all AI features in AmpliFlow: AI assistance →

Features

Everything you need to manage controls

AI generates five fields per control

Requirement explanation, internal description, SoA text, in-depth information, and tool recommendations. Each field builds on the others. Generate or rewrite with one click.

Automatic SoA

Statement of Applicability is generated automatically based on your decisions. Export to PDF for the auditor.

Batch generation

Run the AI through all controls in a standard with one button. Pause and resume. Controls that already have content are skipped.

Connected to everything else

Link controls to processes, risks, documents, legislation, equipment, and improvements. Everything in one system.

Status and follow-up

Five implementation statuses per control. Progress overview per standard. Review cycles with reminders.

Role-based access

Three roles: owner, editor, and viewer. Assign responsible and involved persons per control.

Book a demo

FAQ

Common questions about ISO controls

Which ISO standards are built in?

ISO 27001:2022 with all 93 Annex A controls (in Swedish and English) and ISO 42001:2023 with all 38 Annex A controls. You choose which standards to work with.

How does the AI generation work?

Each control has five documentation fields. The AI generates content based on the control's name, code, category, the standard's description, and your company context. Fields build on each other: the internal description considers the requirement explanation, the SoA text builds on both. You review and edit before saving.

What is batch generation?

A button that runs through all applicable controls in a standard and generates all five fields per control. The process can be paused and resumed. Controls that already have AI-generated content are skipped unless you choose to regenerate.

Can we export the Statement of Applicability?

Yes. The SoA is generated automatically based on your decisions per control (applicable/not applicable with justification). Export to PDF.

How do controls connect to the rest of AmpliFlow?

Each control can be linked to processes, risks (ORA), documents (Pages), legislation, equipment, and improvements. You can create tasks per control and assign responsible persons. Everything lives in the same platform as your other management system work.

Do we have to use the AI?

No. AI assistance is opt-in. You can write everything manually or use AI as a starting point and edit. Read more about how we govern our AI usage on our AI transparency page.

See control management in action

Book a demo and we will show you how AI generates documentation for ISO 27001 and ISO 42001 controls directly in your management system.

Kontakta AmpliFlow

Har du frågor om AmpliFlow eller vill boka en demo? Vi hjälper dig gärna att komma igång med kvalitets- och verksamhetsstyrning.

Kontaktuppgifter

Företag: Cognit Consulting AB
E-post: info@ampliflow.com
Adress: Varholmsgatan 2a, 414 74 Göteborg, Sverige

Hur kan vi hjälpa dig?

Boka demo - Se AmpliFlow i praktiken och ställ frågor
Få offert - Skräddarsydd prissättning för din organisation
Teknisk support - Hjälp med befintlig implementation
Partnerskap - Samarbetsmöjligheter för konsulter

Skicka e-post till info@ampliflow.com så återkommer vi inom 24 timmar.

Kontakta oss

Fyll i formuläret så återkommer vi inom 24 timmar. Du kan också nå oss på info@ampliflow.com.