Help Center
News
Help Center
News
Sign in
Document
Documents & PoliciesQuestionnairesControls & Technical and Organizational Measures (TOMs)Report ExplorerAsset RegisterFrameworksRecord of Processing Activities (ROPA)Exporting your ROPAVendorsImpact Assessments (IA)Legitimate Interest DocumentationsMeetings & ActivitiesRetentions & Deletions PeriodsData Collection Point (DCP)Add documents to vendors
DPIA
Assessments
ROPA
Assets
International Standards & Frameworks
TOMs & Controls
Categories & Attributes
Data Collection Points
Legal Basis
Legitimate Interest
Documents & Policies
Retention & Deletion
Data Flow
Vendors
Questionnaires
Manage
Process Risk OverviewData Flow Map
Dashboards
AI Assistance & Automation
Projects
Tasks
Meetings & Activities
Workflows & Automations
Reporting
React & Resolve
TasksProjectsIncidents & BreachesData Subject Requests
Risk Scenarios & Treatments
Incidents & Breaches
Release Notes
Q2 2026
Q1 2026
Q4 2025
Q3 2025
Release 277 (02.08.2025)Release 278 (04.08.2025)Release 279 (09.08.2025)Release 280 (18.08.2025)Release 281 (20.08.2025)Release 304 (24.08.2025)Release 305 (26.08.2025)Release 306 (28.08.2025)Release 307 (29.08.2025)Release 308 (01.09.2025)Release 309 (06.09.2025)Release 310 (08.09.2025)Release 311 (09.09.2025)Release 312 (11.09.2025)Release 313 (12.09.2025)Release 315 (17.09.2025)Release 316 (19.09.2025)Release 317 (26.09.2025)Release 319 (28.09.2025)Release 322 (30.09.2025)Release 270 (06.07.2025)Release 271 (11.07.2025)Release 272 (15.07.2025)Release 273 (21.07.2025)Release 274 (25.07.2025)Release 275 (26.07.2025)Release 276 (02.08.2025)Release 302 (15.08.2025)
Q2 2025
Q1 2025
Q4 2024
Q3 2024
Q2 2024
Q1 2024
Q4 2023
Q3 2023
Q2 2023
Q1 2023
Q4 2022
Q3 2022
Getting Started
Quickstart GuideQuestionnairesTasksProcess Risk OverviewIT SettingsFrameworksThe Information Security / Asset Risk ModelData Subject RequestsDownloading an elementLegitimate Interest DocumentationsAssigning Audiences to ElementsDocuments & PoliciesControls & Technical and Organizational Measures (TOMs)General SettingsCreating attributes that fit your industryDocument list for onboardingThe Data Protection Risk ModelIncidents & BreachesProjectsManaging audiencesAdd documents to vendorsHow to answer an assessment/questionnaireSetting up the first organization or companyData Collection Point (DCP)Use AI to create elementsSetting Risk models in General SettingsSharing ElementsHow can a user change the language?Data Flow MapRecord of Processing Activities (ROPA)Time MachineCreate and evaluate assessments Company Widget FeatureAsset RegisterVendorsImpact Assessments (IA)Creating organizational unitsExporting your ROPAMeetings & ActivitiesTerms for legitimate processingRetentions & Deletions PeriodsHow to create a new user and how to change the password for loginReport ExplorerMaturity modelAdding risk scenarios to assets or asset groupsRelevant Risk SzenariosPriverion GRC Platform overviewDocument list for onboardingHow can a user change the language?Setting up the first organization or companyCreating attributes that fit your industry
User account
Sharing & Group functions
Features
How-To Guides & Tips
Get Help
Legal
Settings
General Settings
Compliance settings
Identity and access management
IT Settings
Risk Settings

Release 276 (02.08.2025)

Release 276 brings a major expansion of the Risk Owner Console (ROC) with a built-in Risk Monitor, a view-only mode, treatment plan publishing, and reviewer assignment for assessments, alongside significant improvements to the CISO dashboard, ROPA tag collections, and the assessment response flow.

New Release

Version: 276
Release Date: 02.08.2025 19:00 CET

Overview

Release 276 is a large feature release centred on the Risk Owner Console and the CISO dashboard. Risk owners can now access a full Risk Monitor directly within the ROC, manage treatment plans (including publishing them), and work in a protected view-only mode when another user is actively editing an asset. Assessments gain a reviewer-assignment workflow and an in-line risk evaluation step for respondents.

Contents

  • What's new
  • Improvements
  • Fixes
  • Known issues

What's new

Risk Owner Console – Risk Monitor [NG-2622 / NG-2137]

A Risk Monitor panel is now embedded directly in the Risk Owner Console. It displays the current and historical risk scores for the selected asset or asset group, including a projection area, a distribution chart, and threshold indicators — without having to leave the ROC screen.

Risk Owner Console – View-Only Mode [NG-2008 / NG-2088]

When another user is actively editing an asset in the ROC, the screen automatically switches to a view-only state. A sticky indicator banner clearly communicates who is currently editing and that changes cannot be made until the edit is released.

Risk Owner Console – Treatment Plan Publishing

Treatment plans can now be published directly from the ROC. Once published, a deadline is automatically assigned. The lock-screen mechanism prevents conflicting edits and refreshes automatically when the lock is released.

Risk Owner Console – Spotlighted Scenarios [NG-2164 / NG-2241]

A new "Spotlighted Scenarios" panel lets users pin up to six risk scenarios to the CISO / ROC risk monitor for focused tracking. Scenarios can be searched, selected, and excluded from future queries once already selected. A loading indicator and a "not applied to any asset" message are shown where relevant.

Assessments – Reviewer Assignment [NG-4714]

Assessment workflows now support a dedicated reviewer step. A reviewer can be assigned per assessment; the reviewer receives their own view within the workflow and can comment on or approve responses before the assessment is finalised.

Assessments – Risk Evaluation in Responses [NG-4737]

Respondents can now complete an in-line risk evaluation directly within an assessment response, including selecting TOMs that address the identified risks. The result feeds back into the asset risk score automatically.

ROPA – Tag Collections for Personal Data and Purpose of Processing [NG-4834]

ROPA entries for personal data and purpose of processing can now be linked to tag-based collections, making it easier to group and reuse standard categories across multiple ROPA records.

Dashboard v2 – Funnel Chart [NG-4728]

A new funnel chart type is available in the v2 dashboard configuration, enabling a visual overview of how records progress through compliance stages.

Roles – System Role Ordering [NG-4877]

System roles are now listed before custom roles in role selection menus, sorted by type and permissions for easier identification.

Improvements

  • Risk Owner Console – ROC graph and scenarios table: Column widths are fixed to prevent layout jumps; long scenario descriptions are truncated with an expand button; category labels are more readable at all supported screen resolutions.
  • Risk Owner Console – Slider: The current risk score is now shown as a marked position on the mitigation slider so users can see exactly where the risk sits before and after mitigation.
  • Risk Owner Console – Treatment Status: Background colours and border styling for treatment status cards have been updated to match the current design specification.
  • Risk Owner Console – Filters: Selected filters (standard, asset type, tag group) are now preserved when navigating away from and back to the ROC screen [NG-2036].
  • Risk Owner Console – Threshold links: Links from the ROC to the threshold edit screen now redirect back to the ROC correctly after saving [NG-2042].
  • CISO dashboard – Risk Monitor: The monitor now fetches data period-by-period, shows a skeleton loading animation while data loads, and automatically selects the current month bar on opening.
  • CISO dashboard – Scenario graph: Numeric values are shown instead of "–" in the scenario detail panel; text that exceeds four lines is clipped with a read-more control.
  • CISO dashboard – Print view: The projection label is conditionally shown based on the date; the info bar width and label positions have been corrected.
  • Assessments – Recipient validation: Validation errors for missing recipients are now surfaced clearly before submission [NG-4893].
  • Asset / Asset Group – Suggested TOMs: The suggested TOMs panel in the asset detail has been updated to refresh its state correctly when TOMs are added or removed.
  • Asset / Asset Group – Assessments tab: The linked assessments view inside assets and asset groups has been consolidated and improved.
  • ROPA – Personal Data and Purpose of Processing detail tabs: Layouts and table structures have been improved for clarity.
  • User header: The logged-in user's name now displays alongside their assigned roles for clearer identification.
  • Linked objects table: Back-links between collections are now maintained correctly when linked elements are updated.

Fixes

  • Risk Owner Console: Duplicate TOMs no longer appear in treatment plans when a TOM is shared across two scenarios [NG-2253].
  • Risk Owner Console: Untracked TOMs and untracked scenarios are now handled correctly and no longer cause blank states.
  • Risk Owner Console: The "refresh" action buttons that were incorrectly shown in view-only mode have been removed [NG-2003].
  • Risk Owner Console: Asset-specific risk management activation message now shows the correct text depending on whether the item is an asset or an asset group [NG-2471].
  • Risk Owner Console: The label "ASSET" tag is no longer added when there is only one asset in a group [NG-2427].
  • Risk Owner Console: Empty descriptions in scenarios are no longer rendered as blank blocks [NG-2430].
  • CISO dashboard: Selecting a standard that does not exist no longer causes a loading loop.
  • CISO dashboard: Changing the selected standard now correctly resets the data state.
  • Assessments: Fixed an error that caused recipients to be incorrectly flagged on the next page of a multi-page assessment [NG-4893].
  • Assessments: Response saving flow corrected for assessments with multiple-choice role questions.
  • Risk Scenarios list: Column widths are now fixed so that long text no longer causes table columns to shift [NG-2464].
  • Risk Scenarios list: Descriptions in the scenarios table are truncated with an ellipsis to prevent overflow [NG-2464].
  • Dashboard v2: Chart rendering issues for certain data configurations have been resolved.

Known issues

No known issues.

Feedback and Support

We value your feedback. If you encounter any issues or have suggestions, please contact our support team:

  • Schedule a Meeting: Via the Help Widget
  • Give Feedback with Screenshots: Via the Feedback Button in the Help Widget
  • Schedule a Support Call: Here
  • Schedule a Technical Support Call: Here

Was this article helpful?

English
Powered by Product Fruits