Assessment Details Completion Guidance Security Classification:
Confidential
Insert Classification
Risk Assessment Title:
Initial risk assessment of key information assets.
Short, descriptive title
Risk Assessment Scope:
Customer information assets, particularly those containing personal data. Increasing legislation surrounding the protection of personal data, such as the GDPR.
Risk Acceptance Criteria:
Risks at a level rated LOW may be accepted.
Version:
1
Describe the scope of the risk assessment e.g. location, process, assets Describe the general environment in which the assessment is carried out and internal and external factors affecting it Set out the factors which will make a risk acceptable and therefore not require treatment Start at Version 1
Dated:
28 Nov 20xx
Date the assessment was carried out
Risk Assessor(s):
A. N. Other
Risk Assessment Participants:
Marketing Manager, Chief Information Officer
Approval:
Chief Operating Officer
Name and title of person(s) carrying out the risk assessment Names and titles of people contributing to the risk assessment Name and title of approver
Date Approved:
3 Dec 20xx
Date the assessment was approved
Context of Risk Assessment: