This article outlines the legislation and regulations you need to assess for your legal register.
Certifications such as ISO 27001 and ISO 9001 require a company to document the legal, statutory, regulatory and contractual requirements relevant to their company in relation to the standard being assessed (ie information security and/or quality).
Typically your company's Privacy Officer/DPO or Legal counsel should be assigned as owner and be responsible for managing the Legal Register.
Legal requirements
You should be aware of and ensure compliance with all legislation your company is obligated under in the countries that you operate.
Where you employ staff is important as there will often be employment legislation that has information security implications and as such these should be included in the legal register.
Most countries also have cyber security legislation that will apply to companies that have operations in that country.
Data Protection legislation often reaches beyond countries of operation and legislation is driven by the citizenship of the individual. For example, if your UK company is fully operational from the UK but you have an EU client, the EU GDPR will apply for PII data belonging to EU citizens.
The Adoptech legal register has a library of available legislation across many jurisdictions that you can simply add to the register. If you don't find the legislation you require, you can simply add your own.
Regulatory requirements
Some industries are overseen by a regulatory body and depending on your business there may be regulations that affect your information security or quality management systems.
If you don't find the regulations you require in the Adoptech library, you can simply add your own.
Contractual requirements
A generic 'Customer Contractual Requirements' line item is added by default for information security. This can be edited to also cover quality if required.
However, if there are very specific customer contractural agreements that should be noted and overseen separately, add these as a separate row with the Jurisdiction Other (OT).
How do I add a new row to the Legal register in Adoptech?
Select Legal register from the left hand-side menu and click on +Add new/Legislation
A modal will popup with a library of legislation to select. 
Simply click on the relevant jurisdiction(s), select the items required and click on Add
If you do not find the legislation/regulation you require you can add your own 
Reviewing the register
The Legal Register should be reviewed in your Security Committee/Management Review Meetings. Set a review date to create an Event reminder in the Actions and Events calendar to ensure the register is updated in readiness for the management meetings.
See this article for help on register review process in Adoptech.
Version controlled reports
A version controlled snapshot of the Legal Register should be generated so it is clear which version has been reviewed in each of your management meetings.
See this article for help on the report creation process in Adoptech.