Detected risk level

The Provacy software automatically analyzes the information entered in your processing record to estimate the associated risk level.

All indicators are grouped into a overview table, allowing you to:

• quickly understand the risk factors
• identify areas for improvement
• prioritize your actions

In summary: risk originates from the data, spreads through exposure, and increases when control is insufficient.

A simple and progressive approach

Each criterion is assessed in tiers. The higher the level, the greater the risk.

Pour les critères liés à l’exposition, le logiciel affiche des seuils de départ dans le tableau de synthèse. Cela signifie que le risque commence à augmenter à partir de certains niveaux, par exemple :

• à partir de 500 personnes concernées
• from 5 data categories onwards
• from one involved third party onwards
• from 50 recipients onwards, etc.

The risk then increases progressively in tiers. The broader a processing activity is (volume, stakeholders, tools, etc.), the higher its risk level becomes.

These thresholds are defined by default to provide a consistent interpretation of risk. However, they can be adjusted on request according to your context or internal requirements by contacting Provacy support.

Uncertainty rate

When certain information is not provided in the record, the software displays an uncertainty level.

You remain in control of the risk

The Detected risk level is a support tool, but the final decision remains in your hands. Two sliders are always defined in the record, at the bottom of the page:

• Risk before security measures
• Risque après mesures de sécurité

The score guides the analysis, but the user validates the final risk level.

Available columns: