ISO27001:2022, A5.9 states that “An inventory of information and other associated assets, including owners, should be developed and maintained.” (A5.9 Inventory of information and other associated assets)
What you’re being asked to produce here is a list of ‘assets’ that relate to information. Without this information you are clearly going to be at risk, because you won’t know where your data is and therefore it is not secured.
Our Inventory of assets gives you what you need to begin to develop a good understanding and clarity around the assets that you have. Starting with physical assets you quickly move on to software and data (PII) assets.
Don't over complicate things. Keep it simple and develop a deeper understanding of what needs to be protected.
Inventory of Assets
Hey, we're not going to go all 'legal' on you here... that's not our style. But this is our Intellectual Property, and we'd prefer it if you didn't go sharing this with other people who haven't spent the money and bought a copy.
Of course, we can't really stop you... But are you that kind of person? We don't think you are. So if you want to tell people about your new found super power of ISO27001-Awesomeness, great... just don't give it away for free!