PrivacyOps Certification

Course content

Create Account

Log in / Create account to save progress and earn badges

Module 13
PrivacyOps Certification
View course details →

How Are Assessments Conducted in a PrivacyOps Platform?

Mark Complete Enroll now to save progress and earn badges. Click to continue.

1. Review Assessment Dashboard

The assessment dashboard shows an organization’s overall data privacy posture in a single window. 

2. Initiate Assessments

An organization can initiate assessments by picking a predefined template from multiple compliance categories or use their custom assessment template from CSV files

An assessment consists of sets of questions divided into sections that address different aspects of compliance requirements. An assessment may manage compliance relative to a specific set of regulations such as GDPR or CCPA or apply to multiple regulation sets. The figure below shows a typical assessment question. An Assessment template has conditional risk, ratings, skip and recommendation logic.

3. Invite Stakeholders

Organizations can add or remove owners to any assessment for which they are already an owner. Organizations can invite stakeholders to complete sections within the assessment by assigning questions to them. They can also add collaborators to the assessment who do not have accounts by sending them email invites. 

4. Stakeholder Collaboration

Stakeholders respond to questions through an intuitive, collaborative interface. Stakeholders can also invite other team members or external experts to contribute to and review responses. PrivacyOps platform also provides a messaging channel where the collaborators and owner of an assessment can communicate.

5. Track Assessment Progress

Track progress and gaps in real-time. Based on the assessment results, PrivacyOps assign aRating, Risk Score, or a Progress percentage that shows the organization at a glance the level of regulatory compliance reflected by the assessment. 

6. Assess Risks

For assessments, organizations can express the risk both in terms of its likelihood and the severity of the consequences should it occur. Risks (risk description and risk recommendations) may be triggered by conditional logic or can be added manually.

  • Risks that are triggered by template or manually added risk can be remediated, granted an exception, or edited by assessment owners in the heat map.Assessment owners can edit the heat map before approving the risk remediation or risk exception to indicate the residual risk.
  • Organizations can also use the risks panel to quickly view the risks flagged by responses to the assessment questions.
  • Organizations can also flag questions for review and can assign them to others. Assessment question owners can use the flagging tools to track issues that require immediate or additional attention.
7. Formal Workflow Review

Formal review workflow ensures that assessment owners verify responses before they are published within the organization or shared externally.

8. Finalize and share assessments

After finalizing, the organizations can publish the assessments with one click to see the final recommendations and share them internally and externally. Also, organizations can maintain complete control over versions and retain the ability to redact assessments from one or all customers.

Sitemap - XML Sitemap