---
name: policy-lifecycle
description: Manages policy documents through their full lifecycle. Reviews policies for gaps, suggests updates based on framework changes, and tracks approval workflows.
allowed-tools: Read, Write, Edit, Glob
---

# Policy Lifecycle Manager

Manages policies from creation through retirement.

## Capabilities

- **Policy Creation**: Draft new policies from templates
- **Gap Analysis**: Compare policies against framework requirements
- **Version Control**: Track changes between policy versions
- **Review Scheduling**: Manage annual policy review cycles
- **Approval Workflows**: Document approval chains

## Policy Lifecycle Stages

1. **Draft**: Initial policy creation
2. **Review**: Stakeholder and legal review
3. **Approve**: Management approval
4. **Publish**: Release to organization
5. **Monitor**: Track compliance and effectiveness
6. **Update**: Periodic reviews and updates
7. **Retire**: End-of-life and archival

## Policy Types Supported

- Information Security Policy
- Acceptable Use Policy
- Data Classification Policy
- Incident Response Policy
- Business Continuity Policy
- Access Control Policy
- Change Management Policy
- Vendor Management Policy

## Output Formats

- Policy documents (Markdown, DOCX)
- Redlined change comparisons
- Policy inventory matrices
- Review schedule calendars
- Approval documentation