Introduction to the Risk Module
The Risk Management module helps you assess threats to your organisation’s compliance and operations — whether it’s GDPR-related data risks or broader security risks under NIS2.
It supports:
- Risk assessments on processing activities (typically related to personal data)
- Risk assessments on assets (typically IT/OT systems or infrastructure)
You can also assign each risk to a compliance domain, such as GDPR, NIS2 or internal frameworks.
What Can You Use the Risk Module For?
- Identify and assess risks across the organisation
- Prioritise which threats to act on
- Document likelihood, impact and mitigating actions
- Create tasks directly from risks
- Monitor changes over time with version history
Whether you’re preparing for audit, tracking threats from your vendors, or ensuring your systems live up to your own InfoSec policies — this is your central hub.
GDPR vs. NIS2 Focus
You can define the scope in each risk template.
Related Articles
- How to Create and Use Risk Templates
- Performing a Risk Assessment