FAQ/en: Unterschied zwischen den Versionen

You must be a team member or responsible of a management system to get the menu items Risk Management, Measures, Controls or Data Protection displayed. Contact the person responsible for the management system in question so that they can add you to their team. For more information, see "Administration → Management Systems". If necessary, you can also create a new management system for yourself there.

• This can have several meanings:

1. These controls are to be performed by you.
2. These controls are to be checked by you. In this case, an additional indicator is also displayed.
3. These measures are overdue, that is, the measures have exceeded their planned date. This case is also indicated by an additional flag.

For controls, the columns "To be performed by me" and "To be checked by me" can be displayed as an additional option.

• If you want to hide the exposure from the other management systems, you must mark it as "Private". To do this, place a check mark next to "Private" in the top right-hand corner of the hazard situation. For more information on hazad situations, see "Risk Management → Risk Assessment".

• Did you remember to create a review object?

In order to be able to answer review questions in step 3, a review object must first be created or selected. For an initial assessment using a knowledge base, a knowledge base must be selected for this via the dropdown. Review objects can then be created from this knowledge base. To do this, click on the "plus" buttons of those chapters that you want to answer. For more information, see "Initial_assessment_using_knowledge_base".

• Can't create a review object for the selected topic or no plus is displayed?

The plus for creating a review object is only displayed for topics that contain review questions. If none is displayed, then this topic is only used for structuring. You can expand these topics by clicking on the arrow (to the left of it) to display the subordinate topics. For more information, see "Initial_assessment_using_knowledge_base".

• For information on reviews (deviation analysis and review result) and how to perform them, see "Risk Management → Vulnerabilities".

• Did you remember to activate the protection goal for your management system?

You will only be offered the protection goals in a management system that are also activated for the management system. This activation can only be performed by the person responsible for the management system. To do this, he must activate the desired protection target under "Administration → Management Systems". Only when this has been done can you use the protection target.

• Did you remember to select this classification in the management system?

A management system can have only one damage extent classification. If you have created a new classification and want to use it, it must also be selected under "Administration → Management Systems" in the "General Settings" item for the desired management system. This can only be done by the person responsible for the management system!

• Have you selected all levels of the resource view?

If a view other than the resource view is the main view, only those resources that are on the "application level" are displayed by default. To see the other layers as well, expand the resource view and select the desired layers. Then click on "Apply". For more information on structure analysis, see "Risk Management → Structure Analysis".

• Did you remember to activate the organizational unit for your management system?

In order to use an organizational unit for a management system, it must be assigned to the active analysis period. This assignment is done by the person responsible for the management system. This person can manage the organizational units under "Administration → Management Systems" in the "Active analysis period" tab for the active analysis period.

• Have you made sure that you have at least the "Professional" privilege for Privacy?

Experts can manage this under "Administration → User Role Assignment".

• Have you ensured that the management system is also registered as a data protection management system?

Experts can manage this under "Administration → Management Systems".

• To see this menu item, you need expert rights.

Experts can manage this under "Administration → User Role Assignment".

• Have you created an organization register for the organization and entered the desired Professional as the controller?

Professionals generally only see the processing activities for which they are also responsible. In order for a Professional to see all processing activities of an organization, they must be responsible for the organization register of the organization. Only one person or team can be responsible for each organization register. This means: If you want to make more than one person responsible for an organization register, you must first assign them to a team and then enter the team as responsible for the organization register. For more information, see "Data Protection → Processing Register".