Impact radius for regulatory alerts of type regulatory event

  • Release version: Australia
  • Updated March 12, 2026
  • 2 minutes to read
    • Summarize
    Summarized using AI
    This content was generated using new OpenAI-powered functionality. Results are provided on an as is basis and are not guaranteed to be accurate or complete.

    Summary of Impact radius for regulatory alerts of type regulatory event

    The impact radius defines how broadly a regulatory change affects an organization. In the Regulatory Change Management application, this concept is used to assess and manage the effects of regulatory events by identifying impacted areas within the organization. This enables automatic generation of action tasks to address compliance and risk impacts.

    Show full answer Show less

    Key Features

    • Impacted Areas Table: A new table, sngrcregchangeimpactedarea, captures a broad range of impacted items beyond citations, including policies, control objectives, controls, risks, third parties, and more, providing a comprehensive view of regulatory impact.
    • Regulatory Alert Types: Impacted areas can only be added to regulatory alerts classified as regulatory events, allowing targeted impact assessment.
    • Impact Radius Calculation: When impacted areas are added and the alert is assigned and marked as applicable, regulatory tasks are automatically created and assigned. Users can respond to these tasks, triggering creation of further action tasks specific to each impacted area.
    • Manual Task Addition: Users can supplement automatically generated action tasks with additional manual tasks for greater flexibility in managing regulatory changes.
    • Compliance Workspace Integration: The Compliance Workspace visualizes regulatory changes by impacted areas within the Tracking widget, enhancing visibility and tracking of compliance status.

    Benefits for ServiceNow Customers

    This functionality enables organizations to:

    • Gain a holistic understanding of how regulatory changes affect multiple facets of their governance, risk, and compliance framework.
    • Automatically generate and assign relevant action tasks, improving response efficiency and accountability.
    • Visualize regulatory impacts clearly within the Compliance Workspace, facilitating better monitoring and decision-making.
    • Customize task management by adding manual actions to address specific organizational needs.

    Impact radius typically refers to the extent to which a regulatory change affects an organization. Adding impacted areas to a regulatory alert of type regulatory event helps to calculate the impact radius of a regulatory alert.

    Impacted areas

    The regulatory events that could have an impact on the compliance or risk posture of your organization should be assessed. Calculating the impact radius is a method for assessing the impact of the regulatory event on the GRC objects and for suggesting action tasks based on the assessment of the impact. The Regulatory Change Management application supports the impact radius calculation process for a regulatory alert. Calculating the impact radius is a method of automatically creating action tasks for the users.

    Regulatory alerts are of two types:
    • Regulatory event
    • Source document
    Prior to the Yokohama release, the Regulatory Change Management users had the option to add only one or more number of citations impacted due to any regulatory change. This led to sole reliance on only citations and omitted taking other business operations such as policies, control objectives, controls, risks, third-parties, and so on, into consideration. To address this problem, a new table called impacted area (sn_grc_reg_change_impacted_area) is created and it captures the following items including the previously captured citations:
    • Citation
    • Control objective
    • Policy
    • Authority document
    • Control
    • Acknowledgment campaign
    • Policy category
    • Policy exception
    • Risk statement
    • Risk framework
    • Risk
    Note:
    Impacted areas can be added to regulatory alerts that are of type regulatory event. For more information, see Add impacted areas manually to a regulatory alert

    Impact radius calculation

    When you add impacted areas to regulatory alerts of type regulatory event, assign it to a user, and the user marks the alert as applicable, regulatory tasks are automatically generated. The regulatory tasks are then assigned to a user. When the assigned user of the tasks chooses to respond to the tasks, action tasks for each impacted areas are generated. However, you can also manually add more action tasks, other than the ones that are automatically created based on the impacted areas.

    Representation of regulatory changes in the Compliance Workspace

    The Compliance Workspace is updated to display the regulatory changes by impacted areas. The following figure displays the regulatory changes section under the Tracking widget.
    Figure 1. Regulatory changes on the Compliance workspace
    The figure shows the link to the Regulatory change management dashboard and the regulatory change tasks.