Privacy Management home page

  • Release version: Australia
  • Updated March 12, 2026
  • 3 minutes to read
    • Summarize
    Summarized using AI
    This content was generated using new OpenAI-powered functionality. Results are provided on an as is basis and are not guaranteed to be accurate or complete.

    Summary of Privacy Management home page

    The Privacy Management home page offers ServiceNow customers a comprehensive view of their organization's privacy risk and compliance status. It consolidates key metrics such as processing activity criticality scores, privacy risk and impact assessment statuses, control attestations, issue statuses, and privacy cases. This centralized dashboard is organized into four distinct tabs: Processing activity, Risk and compliance, Operations, and Privacy cases, enabling efficient monitoring and management of privacy-related functions.

    Show full answer Show less

    To access the home page, users must have the snprivacy.manager and snprivacy.analyst roles.

    Key Features

    • Processing Activity Tab: Displays detailed reports about processing activities including their states (e.g., New, Discover, Review), criticality scores, departmental distribution, compliance levels, data subject types, information object categories, processing types, and data processing roles.
    • Risk and Compliance Tab: Provides insights into processing activities by aggregated risk scores, a risk heatmap illustrating residual and inherent risks alongside control effectiveness, compliance overviews of controls linked to authority documents or policies, and highlights control objectives requiring attention due to non-compliance.
    • Operations Tab: Tracks operational metrics such as the status and counts of risk and privacy assessments, issues prioritized by urgency, policy exceptions by risk rating, and control assurance activities including attestations, indicators, and control tests.
    • Privacy Cases Tab: Summarizes privacy case management with metrics on cases needing attention (overdue, due soon, unassigned), case distribution by state, breach status, priority, and subtype filters. It also includes trends of opened and closed cases over the past 12 months and counts of related issues by priority.

    Use Cases

    • Privacy Manager: Can review the overall privacy compliance posture across all processing activities and privacy assessments, and monitor the privacy team’s tasks.
    • Privacy Analyst: Focuses on processing activities assigned specifically to them and accesses their pending tasks.

    Practical Benefits

    By utilizing the Privacy Management home page, ServiceNow customers can efficiently monitor and manage privacy risks and compliance obligations in a single interface. The detailed reports and visualizations support informed decision-making and prioritization of privacy activities. This helps ensure timely attention to critical privacy issues, enhances compliance with privacy regulations, and supports effective privacy governance across the organization.

    The Privacy Management home page provides an overview of the complete privacy risk and compliance posture with details, such as the processing activity criticality score, privacy risk assessment status, privacy impact assessment status, control attestations, issues-specific status, and privacy cases.

    The home page is organized into four tabs: Processing activity, Risk and compliance, Operations, and Privacy cases.

    Processing activity tab of the Privacy management dashboard.

    Required roles

    To view the home page, you must have sn_privacy.manager and the sn_privacy.analyst roles.

    Use cases

    For examples of how different people in your organization would use this home page, see the following use cases.
    User Dashboard use
    Privacy manager The privacy manager can view and understand the privacy compliance posture considering all the processing activities and privacy assessments. They can also view the privacy team's tasks.
    Privacy analyst The privacy analyst can view and understand the privacy compliance posture considering only the processing activities assigned to the privacy analyst. They can also access the tasks that need their attention.

    Processing activity reports

    Title Description
    All processing activities by state Count of processing activities in each state: New, Discover, Review, Monitor, and Retired.
    Processing activities by criticality score Distribution of active processing activities by criticality score.
    Processing activities by department Number of processing activities grouped by department.
    Least compliant processing activities List of processing activities with the lowest compliance scores, including the criticality score and aggregated residual risk.
    Processing activities by data subject type Number of processing activities grouped by data subject, such as employees, contractors, customers, and patients.
    Processing activities by information object category Number of processing activities grouped by information object, such as demographic data, family background, biometric data, racial or ethnic origin, medical health, and location tracking.
    Processing activities by type Distribution of processing activities by type, such as business process, application, business application, or business entity.
    Processing activities by data processing role Distribution of processing activities by data processing role, such as controller or processor.

    Risk and compliance reports

    Reports on the Risk and compliance tab of the Privacy Management home page.

    Title Description
    Processing activities by aggregated risk score Distribution of processing activities by aggregated risk score. You can filter by risk classification.
    Risk heatmap Distribution of processing activities by residual/inherent risk and control effectiveness levels.
    Compliance overview Compliance status of controls for individual authority documents or policies, including the compliance score, related issues, and privacy cases. Toggle between Authority documents and Policies to switch views.
    Control objectives needing attention Control objectives that are marked as non-compliant and the number of impacted processing activities.

    Operations reports

    Reports on the Operations tab of the Privacy Management home page.

    Title Description
    Risk assessments Number of risk assessments by state (new and in progress), including counts for open, overdue, and due in 7 days.
    Privacy assessments Number of privacy assessments by state (assigned, work in progress, and draft), including counts for open, overdue, and due in 7 days. You can filter by available assessment templates.
    Issues Number of issues by priority, including counts for open, overdue, and due in 7 days.
    Policy exceptions Number of policy exceptions by risk rating, with counts for open, overdue, and due in 7 days.
    Control assurance Control assurance status across three areas.
    • Attestations: Number of open and overdue attestations.
    • Indicators: Number of open indicators and indicators that failed in the last 6 months.
    • Control tests: Number of open and overdue control tests.

    Privacy cases reports

    Reports on the Operations tab of the Privacy Management home page.
    Title Description
    Needs attention Number of overdue cases, cases due in 7 days, and unassigned cases.
    Case overview Distribution of cases by state, by breach status, and by priority.
    Cases Number of privacy cases. You can filter the view by subtypes.
    Cases by primary cause Distribution of privacy cases grouped by primary cause.
    Opened and closed cases in last 12 months Trend of opened and closed cases over the last 12 months.
    Issues Number of issues by priority, with counts for open, overdue, and due in 7 days.