Help Center
News
Help Center
News
Getting Started
Compliance Settings
IT Settings
Risk Settings
Modules
Document
Documents & PoliciesAssessmentsControls & Technical and Organizational Measures (TOMs)Report ExplorerAsset RegisterInternational StandardsRecord of Processing Activities (ROPA)Exporting your ROPAVendorsData Protection Impact Assessments (DPIA)Legitimate Interest DocumentationsMeetings & ActivitiesRetentions & Deletions PeriodsData Collection Point (DCP)Add documents to vendors
Manage
React & Resolve
Sharing & Group functions
Assessments
Features
How-To Guides & Tips
Get Help
Release Notes

International Standards

Introduction

The International Standards section helps you review standards and implement controls efficiently. Go to Document and select International Standards to open the section.

Select a standard from the dropdown menu, such as ISO27001 SoA 2022.
The dropdown will only display standards previously activated in the IT settings.

Overview

Controls

The controls are well-structured, allowing you to assess the implementation status of each measure quickly.

  • In the first bar, the controls are divided into Passed, Failed, and No Data categories. The percentage share for each category is displayed.
  • Similarly, the respective percentages of applicable and non-applicable controls are also shown.
  • Implementation: shows the controls divided into Full, Partial, and No.
  • Review: indicates how many controls are classified as Conform, Observation, Cannot Be Assessed, or Nonconformity.

This clear structure helps you capture the current status of the controls at a glance and, if necessary, take targeted improvement measures. You can collapse and expand the overview field using the chevron symbol.

Maturity Assessment

With the toggle at the top right, you can switch to Maturity, which provides a detailed visualization of the implementation status. You will see a spider diagram illustrating the implementation status across various categories, which vary depending on the standard.

You can choose which elements to display in the diagram. The time frame is adjustable and allows you to analyze progress over time by changing the year.

Editing Controls

If you are in the Maturity view, switch back to the Controls view. Sorting by controls is the default setting. Sort by completed will sort by implementation status. Use the toggle to switch.

Below the overview, you will see all the controls of the standard listed.
To the left of each, you will see an X symbol. The symbol changes to a checkmark if the control is marked as applicable and fully implemented.

You can select the applicability and set the implementation status for each control.

In the third field, you will find the information on conformity, which cannot be edited as it is derived from the audit. We explain below further details on this.

By clicking on a control, you will enter the detailed editing view.

On the right side is a control panel where you can switch between Control and Audit. You can also access the Log to track all adjustments. We will start with Control.

Control

In the top row, you will see the same three fields for applicability, implementation, and conformity as in the main overview.
The first two fields can be changed. Here, you can specify whether the control is Applicable or Not applicable and set the implementation status as either Partially Implemented, Fully Implemented, or Not Implemented.
The field for conformity continues to display the information from the audit and cannot be edited.

Below, you will see the full control text.

Edit the control:

  • For certain standards, a To-Do List is available where you can check off individual items to document progress.
  • In the first section, you can add additional justification for implementation.
  • Below this, you will find Linked Mitigated Risks (Scenario & ID), where you can search for and link risks by entering the ID or scenario into the search field.
  • In the middle section, you can add evidence and link documentation. You can choose between Documents, Tasks, and TOMs and select the specific element from a second dropdown menu. You can link as many of these elements from your Priverion platform as needed.
  • Below, you can select one or more responsible persons in charge of the control.

The right section is purely informational. It displays information about the control (the extent varies depending on the standard) and the mapping with other international standards.

Viewing the Change Log

You can view the history of a control and track changes.

  • Click on Log in the control panel on the right-hand side of the screen. A gray field will appear below the blue panel.
  • The gray field contains a timeline with blue dots representing changes or edits. Click on one of these blue dots to navigate through the history of the control.
  • The date and time of each change or edit are displayed to the right of the timeline. This allows you to track the chronological order of changes to the control.
  • Click on Log to close the field.

Audit

Set the toggle in the control panel to Audit to verify conformity with the standard and the implementation of corresponding measures. The field will now be highlighted in yellow.

  • On the left is a text field for documenting general findings from the audit.
  • In the middle section, you can select the evidence to be reviewed. You can enter findings in the corresponding field for each piece of evidence and then choose conformity from a dropdown menu.
  • In the right column, select the average maturity level of the control and its conformity status. The options include Conform, Observation, Cannot be assessed, Major nonconformity, and Minor nonconformity.

The applicability and implementation status of the control can still be adjusted in the top bar, even while in audit mode.

You can view previous audits by clicking on Log.

Click on the three dots in the upper-right corner to collapse the field, providing a better overview of all controls of the standard.

Was this article helpful?

English
Powered by Product Fruits