Create or manage risks on a processing activity
Add new risks or manage the risks that are automatically added to the processing activity from the assessment responses. Adding risks helps you manage processing activities using the risk-based approach.
Before you begin
Role required: sn_privacy.analyst who owns the processing activity or sn_privacy.manager
About this task
- Selecting risk statements: You can add existing risk statements to a processing activity. When you add a risk statements to a processing activity, the risks associated with that particular risk statement are added to the processing activity.
- Selecting from the recommended risks: This option enables you to choose from a list of recommended risks based on the information object that is mapped to a processing activity. If an information object is mapped to one or more risk statements, and the same information object is mapped to a processing activity, the system recommends the corresponding risk statements.
- Creating risks: You can create risks and add them to the processing activity.
- Applying risks from entities: You can apply privacy-related risks on the processing activity from the related entity.
Procedure
- Navigate to .
- Select and open the processing activity to which you want to add controls.
- Click the Risks related list.
-
To add a risk to the processing activity, do one of the following.
Option Description To create a risk Click New and fill in the form. For details see, Create a risk.
To add a risk by using the existing risk statement - Click Add risk by risk statement.
- Select the risk statements that you want to add.
- Click Add.
To select a risk from the list of recommended risks - From the Add risk by risk statement list, select Recommend risks.
- Click Add.
Note:If a risk has already been added to a processing activity, then it does not appear in the list of recommendations.