Typically: a delegation of authority/signatory matrix, minutes/resolutions, risk register, vendor approval policy, incident register with corrective actions, training logs, drill records, and controlled versions of safeguarding and wellbeing policies with review cycles.