Skip to content
logo
GIRAF Wiki Risk assessment
Type to start searching
    aau-giraf
    • Home
    • Getting Started
    • Development
    • Legal
    • About
    • Legacy
    aau-giraf
    • Home
      • Overview
      • Handover
      • Ownership Transfer
      • Process
      • Tools
      • Overview
        • Overview
        • Running the Wiki Locally
        • Writing Pages for the Wiki
      • Use of GitHub in GIRAF
      • Overview
      • Privacy Policy
        • Overview
        • GDPR Regulation
        • Consent Information
        • Samtykkeerklæring
        • Processing Activity Record Information
        • Processing Activity Record
      • Risk assessment
      • Licenses
      • About
      • Overview
        • Overview
          • Overview
            • Overview
            • Handle Exceptions from the Web API
          • Manual Release of Giraf
          • Testing
          • Overview
          • Repositories
            • Overview
            • Workflows in the Repositories
            • Code Coverage
          • Using GitHub in GIRAF
          • Overview
          • Architecture
          • Access
            • Overview
            • General Information
              • Overview
              • Practical Information
              • Configuration
              • Networking Docker Swarm
              • Proxy
              • Web API
              • Database
          • Overview
          • Architecture
            • Database
            • Entity Framework Core
            • Models
            • Overview
            • Guidelines
            • Description of Controllers
              • Overview
              • Account Endpoints
              • User Endpoints
              • Department Endpoints
              • Activity Endpoints
              • Pictogram Endpoints
              • Week Endpoints
              • WeekTemplate Endpoints
              • Status Endpoints
              • Error Endpoints
              • Overview
              • Token Authentication
            • Swagger
          • Settings
          • Testing
          • Overview
            • Overview
            • Application structure
            • Buttons
            • Colors
            • Dialogue
            • Greyscale
            • Icon guide
            • Loading indicators
            • Pictogram representation
            • Indication of scroll
            • Typography
            • Overview
            • Guidelines
          • Environment Setup
          • MacOS Setup Guide
          • Linux Setup Guide
          • Windows Setup Guide
          • Running GIRAF
          • Optional: Dockerisation
        • Overview
        • Handover Guide
          • Overview
          • Feature Overview
            • Overview
            • PO
            • Process
            • Development Team
            • Overview
            • Sprint Planning
            • Development Phase
            • Cross Stand-up Meetings
            • Sprint Review
            • Sprint Retrospective
            • Release Preparation
            • Overview
              • Overview
              • Release designer
              • Overview
              • Sprint Planning Tool
              • Pull Requests Overview Tool
              • Individual Pull Request Tool
              • Issues Overview Tool
              • Sprint Points Tool
              • Sprint Retrospective Tool
            • Google Calendar
            • Slack
            • Overview
            • GIRAF Offline database
            • Issue 418
            • Issue 526
          • Introduction
          • Advice for Future Process Groups
          • GIRAF Events
          • Use of GitHub in GIRAF
          • Kubernetes
          • Ownership Transfer
          • Process Group Tools
          • Overview
          • Changing the process
          • How to's for developers
          • Process group information
          • Project meetings
            • PO advice for next year's PO group
            • General Advice for the Future Giraf Projects
            • Advice for the Process of Future Giraf Projects
          • Future Work
          • Overview
            • Overview
            • weekplanner
            • web-api
            • api_client
            • wiki
            • Review Checklist for Code
            • Review Checklist
        • Overview
        • Release Guide
          • 2018s4r1
          • 2018s3r2
          • 2018s3r1
          • 2019s3r1
          • 2019s2r1
          • 2019s1r1
          • 2020Es3r1
          • 2020Fs3r1
          • 2020Fs2r1
          • 2020Fs1r1

    Risk assessment¶

    From issue 171.

    The risk assessment can be found here: PDF

    The risk assessment has been based on the guidance of Datatilsynet. Specifically these documents:

    • Datatilsynets vejledning
    • Datatilsynets artikel 25 og 32
    • Template for risk assessment

    Additionally, as inspiration, ENISA has provided a guide which has also been utilized:

    • ENISA threat taxonomy

    Last update: September 2, 2025
    Previous Processing Activity Record
    Next Licenses
    powered by MkDocs and Material for MkDocs