Help Center
News
Help Center
News
Sign in
Document
Documents & PoliciesQuestionnairesControls & Technical and Organizational Measures (TOMs)Report ExplorerAsset RegisterFrameworksRecord of Processing Activities (ROPA)Exporting your ROPAVendorsImpact Assessments (IA)Legitimate Interest DocumentationsMeetings & ActivitiesRetentions & Deletions PeriodsData Collection Point (DCP)Add documents to vendors
DPIA
Assessments
ROPA
Assets
International Standards & Frameworks
TOMs & Controls
Categories & Attributes
Data Collection Points
Legal Basis
Legitimate Interest
Documents & Policies
Retention & Deletion
Data Flow
Vendors
Questionnaires
Manage
Process Risk OverviewData Flow Map
Dashboards
AI Assistance & Automation
Projects
Tasks
Meetings & Activities
Workflows & Automations
Reporting
React & Resolve
TasksProjectsIncidents & BreachesData Subject Requests
Risk Scenarios & Treatments
Incidents & Breaches
Release Notes
Q2 2026
Q1 2026
Q4 2025
Q3 2025
Q2 2025
Release 245 (12.04.2025)Release 246 (15.04.2025)Release 247 (23.04.2025)Release 248 (24.04.2025)Release 249 (25.04.2025)Release 252 (04.05.2025)Release 255 (12.05.2025)Release 259 (07.06.2025)Release 261 (11.06.2025)Release 262 (12.06.2025)Release 264 (14.06.2025)Release 266 (22.06.2025)Release 250 (28.04.2025)Release 251 (30.04.2025)Release 253 (07.05.2025)Release 254 (08.05.2025)Release 256 (18.05.2025)Release 257 (25.05.2025)Release 258 (01.06.2025)Release 260 (10.06.2025)Release 263 (13.06.2025)Release 265 (18.06.2025)Release 267 (24.06.2025)Release 269 (28.06.2025)Release 268 (28.06.2025)Release 276 (16.05.2025)Release 275 (09.05.2025)Release 274 (07.05.2025)Release 273 (05.05.2025)Release 272 (02.05.2025)Release 271 (29.04.2025)Release 270 (25.04.2025)Release 269 (25.04.2025)Release 268 (23.04.2025)Release 267 (22.04.2025)Release 265 (14.04.2025)
Q1 2025
Q4 2024
Q3 2024
Q2 2024
Q1 2024
Q4 2023
Q3 2023
Q2 2023
Q1 2023
Q4 2022
Q3 2022
Getting Started
Quickstart GuideQuestionnairesTasksProcess Risk OverviewIT SettingsFrameworksThe Information Security / Asset Risk ModelData Subject RequestsDownloading an elementLegitimate Interest DocumentationsAssigning Audiences to ElementsDocuments & PoliciesControls & Technical and Organizational Measures (TOMs)General SettingsCreating attributes that fit your industryDocument list for onboardingThe Data Protection Risk ModelIncidents & BreachesProjectsManaging audiencesAdd documents to vendorsHow to answer an assessment/questionnaireSetting up the first organization or companyData Collection Point (DCP)Use AI to create elementsSetting Risk models in General SettingsSharing ElementsHow can a user change the language?Data Flow MapRecord of Processing Activities (ROPA)Time MachineCreate and evaluate assessments Company Widget FeatureAsset RegisterVendorsImpact Assessments (IA)Creating organizational unitsExporting your ROPAMeetings & ActivitiesTerms for legitimate processingRetentions & Deletions PeriodsHow to create a new user and how to change the password for loginReport ExplorerMaturity modelAdding risk scenarios to assets or asset groupsRelevant Risk SzenariosPriverion GRC Platform overviewDocument list for onboardingHow can a user change the language?Setting up the first organization or companyCreating attributes that fit your industry
User account
Sharing & Group functions
Features
How-To Guides & Tips
Get Help
Legal
Settings
General Settings
Compliance settings
Identity and access management
IT Settings
Risk Settings

Release 245 (12.04.2025)

Release 245 introduces a new Anti-Malware settings area, a Quick Access feature for external users, expanded international standards coverage, and a wide range of improvements to tables, linked elements, and applicable laws handling across the platform.

New Release

Version: 245
Release Date: 12.04.2025 19:00 CET

Overview

Release 245 brings several notable additions to the Priverion DPMS: a dedicated Anti-Malware configuration section in IT Settings, a Quick Access entry point for external users, and significantly expanded support for international standards and regulations. Alongside these new capabilities, this release delivers broad improvements to the selectable table component used throughout the application, more reliable file upload handling, and a number of bug fixes affecting ROPA, assessments, and other areas.

Contents

  • What's new
  • Improvements
  • Fixes
  • Known issues

What's new

Anti-Malware Settings

A new Anti-Malware section is now available under IT Settings. Administrators can view and configure anti-malware default settings and monitor quarantine status directly within the platform.

Quick Access for External Users

A new Quick Access entry point has been introduced, allowing external users (e.g. assessment respondents) to reach their assigned content without requiring a full platform login. This streamlines collaboration with external parties such as vendors or auditors.

Expanded International Standards and Regulations

The library of supported international standards has been significantly extended. Newly added or updated standards include:

  • AI Act
  • BSI C5 2020, BSI Grundschutz (Basis, Standard, Erhöhter Schutzbedarf)
  • CIS CSC 8.0
  • Cyber Resilience Act (CRA) Annexes
  • DORA
  • EASA
  • GDPR 2018 and GDPR Check 2018
  • ICT Minimum Standard
  • ISO 27701 Annex A & B (2019)
  • ISO 42001 and ISO 42001 Annex A+B (2023)
  • KRITIS
  • MITRE
  • NIS2 Directive and NIS2 Annex
  • NIST CSF 1.1 and 2.0, NIST Privacy Framework Core 1.0, NIST SP 800-53 Rev. 5
  • SOC 2 (2017 and with Rev. 2022)
  • Swiss FADP 2023
  • VDA ISA 5.1 and 6.0

The applicable regulations list has also been updated with new entries and improved formatting.

Information Screen for External Users

External users now see a dedicated information screen when they access the platform, providing clearer guidance on what they are expected to do.

Improvements

  • Selectable tables (all modules): The table component used across Records of Processing Activities, Assets, Incidents, TOMs, Tasks, Vendors, and other screens has been substantially refactored. Improvements include more reliable "select all" behaviour, corrected row-click handling, better loading animations, and a fix for duplicate loading indicators on empty tables.
  • ROPA – Controller field: The controller field in ROPA records has been migrated to support multiple entries, giving users greater flexibility when more than one controller is involved.
  • ROPA – Affected persons: The number-of-affected-persons field now uses a dedicated selector, making it easier to specify or update this value consistently.
  • Applicable laws: The applicable laws component has been improved with better filtering by regulation, cleaner formatting of law names, and more consistent handling of country-specific laws.
  • International standards – linked elements: The type selector for linked elements in the international standards screen now supports multiple selections simultaneously.
  • File uploads: The upload component has been updated to better reflect scanning status during anti-malware checks, including a new scanning icon displayed while files are being verified.
  • User management: Improvements to user creation and editing flows, including better validation and helper functions for role assignment.
  • Detail screens (assessments, DPIA, assets, tasks, vendors, documents, incidents, and more): Consistent improvements to how linked tables are displayed and updated across all detail screens, including more reliable refresh behaviour after edits.
  • Compliance report: A fix ensures the compliance report generates correctly.
  • Login / authentication: Improved company validation on login.

Fixes

  • ROPA sharing: Fixed an issue where the sharing checkbox and related controls did not behave correctly on the ROPA sharing screen. [NG-4009]
  • ROPA – Legal role: Corrected display and handling of the legal role field in shared ROPA records. [NG-4008]
  • Applicable laws filter: Fixed filtering so that only laws applicable to the selected regulation are shown. [NG-4007]
  • Process Risk – UUID: Resolved an issue where the unique record identifier was not correctly assigned in the Process Risk screen. [NG-3991]
  • Detail screens – UUID call: Fixed incorrect or missing UUID update calls on detail and edit screens across multiple modules (assessments, DPIA, assets, tasks, and others). [NG-3989]
  • Malware scan / quarantine management: Resolved multiple issues in the malware scanning workflow, including incorrect quarantine handling when scan history was absent, auto-refresh not triggering correctly, and file extension being undefined in certain states. [NG-3455]
  • TOMs – blue screen: Fixed a crash ("blue screen") that could occur when opening TOM records under certain conditions.
  • Asset group screens: Corrected a model issue affecting the Asset Group detail and edit screens.
  • Tags: Fixed translation and display issues affecting tags in several screens.
  • Missing translations: Added missing translations for several UI elements across supported languages.

Known issues

No known issues.

Feedback and Support

We value your feedback. If you encounter any issues or have suggestions, please contact our support team:

  • Schedule a Meeting: Via the Help Widget
  • Give Feedback with Screenshots: Via the Feedback Button in the Help Widget
  • Schedule a Support Call: Here
  • Schedule a Technical Support Call: Here

Was this article helpful?

English
Powered by Product Fruits