All I was doing was pointing that out so that the auditor in question, instead of trying to bail out management by findings policies and procedures for them, should instead be writing them up for failure to follow sound business practices.
I wouldn't be so quick to call this a failure to follow sound business practices. There is nothing in the original post that suggests management failed to consider different methodologies, vendors, etc. before making a change to their item processing system.
To the original question- I agree with other posters that suggest a policy isn't really needed. Your branches and support departments probably already have procedures for the new system, much of which would have likely been supplied by the vendor.