[OBSERVE: Use this field to inform the user (in your language) that the Join us page is only available in english]
Product Documentation for Cybercom Compliance Portal
This document describes CCP, CCP Maintenance, Service Desk and Support Assistance Hours. Licensor reserves the right to update and change this document as CCP develops.
2. About CCP
CCP is a GRC-tool, i.e. a tool for inventory of requirement fulfilment supporting work within the fields of Governance, Risk and Compliance.
CCP allows the Licensee to work with compliance in a structured manner towards different kinds of regulations and compliance areas. The tool supports risk analysis and may provide decision support in the form of action analysis.
CCP will support Licensee in its work with compliance in various subject areas, but since CCP is a support tool only, Licensee will remain solely responsible for how CCP is used in its business operations and that the compliance results generated by CCP are adequate and fit for Licensee's intended purposes and that Licensee will comply with regulation or law of the subject area(s) for which CCP is used.
3. Subject area
CCP may be licensed for various subject areas. Examples of subject areas are Information Security, Data Protection, Environmental Management, Social Responsibility and Occupational Health. A subject area may also be a specific quality standard, ISO or other standard, for example:
- https://www.eugdpr.org External link, opens in new window.
- https://www.iso.org/iso/iso14000 External link, opens in new window.
- https://www.iso.org/iso/home/standards/iso26000.htm External link, opens in new window.
- https://www.iso.org/iso/iso45001 External link, opens in new window. regional authorities or business policies.
The Subject Area/-s for which the CCP is licensed is/are specified in the Agreement. In the event that Licensee would like to extend the use of CCP to other Subject Areas, such an extended use will be subject to additional terms and conditions and License Fees as specified by Licensor upon order.
4. Functionality in CCP
An overview of the functionalities in CCP is found in the table below.
Licensee's right to use CCP is limited by the number of Administrator User(s) and Respondent User(s) specified in the Agreement. Licensee may however create own user roles within CCP and name these roles to fit its needs. For the sake of clarity, every role that can do (at least) what an Administrator User is entitled to do as defined in the Agreement shall be classified as an Administrator User (regardless of what his/her role is named) and all other users shall be classified as Respondent Users.
The term User refers to all users in CCP (i.e. both Administrator User and Respondent User).
|Home||Your declarations/risks/actions||Where Respondent Users can view their assigned declarations/risks/actions, and open and fill in the same.|
|Your assistance request||Where Users can view, open and fill their declarations/risks/actions forwarded to them from another User.|
|Documents||Area where a User can find documents added to a group by an Administrator User. It can for example be User manuals.|
|Status Overview||Graphical presentation of a filled-out declaration.|
|Risk assessment/ Risk/action Manager||Perform a risk assessment for the Respondent Users declaration/risks/actions|
|Print declaration||Ability to print a declaration/risk/action.|
|Self service||Self service view||Area where Respondent Users can assign themselves declarations from public templates published by an Administrator User.|
|Templates||Declaration template||Area where Administrator User can edit and administrate declaration templates.|
|Risk template||Area where Administrator User can edit and administrate risk templates.|
|Action template||Area where Administrator User can edit and administrate action templates.|
|Export||Ability to export a template.|
|Import||Ability to import an exported template.|
|Create new template||Ability to create new templates.|
|Risk assessment/ Risk/action Manager||Settings for performing risk assessments, as well as the performing of risk assessments.|
|Uploaded files||View over the files that have been uploaded to declarations/risks/actions based on the template.|
|Status overview||Graphical presentation of the result of filled out declarations. A view where Administrator Users can see all declarations/risks/actions created based on the template.|
|Conditional questions||Ability to control conditional questions.|
|Add to history||Ability to create a snapshot over filled out declarations/risks/actions based on the template.|
|Edit||Ability to make changes to the administrative properties for a template, e.g. name, expiration date, Administrator Users for the template etc.|
|Notifications||Administrator User can decide when reminders to answer a declaration/risk/action should be sent to the Respondent Users.|
|Template configuration||Ability to adjust basic configurations of the template and translate it to another language.|
|Edit structure||Ability to edit the template's structure and content.|
|Standard risks/actions||Ability to create and set rules for standard risks and actions.|
|Delete||Ability to delete a template.|
|Waiting declarations||Waiting declarations||Area where declarations assigned to a Respondent User by email will end up until the Respondent User has logged into CCP.|
|Declarations/Risks/ Actions||Declarations/risks/actions||Area where all declarations/risks/actions sent to Respondent Users can be found and possible to administrate.|
|Group Declarations/Risks/actions||Area where all declarations/risks/actions sent to a group of Respondent Users can be found and possible to administrate.|
|Standard risks/actions based on risk/action templates||Area where all standard risks/actions can be found and possible to administrate (i.e. add default values).|
|Create new declaration/risk/action||Ability to create a new declaration/risk/action, i.e. assigning a Respondent User a new declaration.|
|Export all declarations/risks/actions details to Excel||Export all declarations details to Excel.|
|Risk Assessment||Ability to perform a risk assessment based on a filled-out declarations.|
|Risk assessment reports||Show all existing risk assessment reports performed based on the filled-out declaration.|
|Borrow||Ability to borrow a declaration/risk/action from another user to fill-out answers.|
|Generate report||Generate reports based on answers to declarations/risks/actions of a template.|
|Copy||Ability to copy a declaration/risk/action.|
|Ability to print a declaration/risk/action.|
|Compare historical data||Ability to compare two snapshots of a declaration's/risk's/action's answers.|
|Add to history||Ability to create a snapshot of a declaration's/risk's/action's answers.|
|Edit||Ability to edit the administrative properties for a declaration/risk/action, e.g. name, expiration date etc.|
|Delete||Ability to delete a declaration/risk/action.|
|Score card||Scorecard||Ability to visually present results and filter information.|
|Declaration feedback||Create new declaration feedback|
|Management object||Create new management object|
|Numerical intersection||Add intersection|
|Graphical intersection||Add intersection|
|Admin||Users||Area to manage Users of the Service.|
|Create new user||Create new User manually.|
|Edit||Ability to edit a User's properties, e.g. name, access right, group belongings etc.|
|Delete||Ability to delete a User.|
|Groups||Area to manage groups in the Service.|
|Create new group||Create new group manually.|
|Edit||Ability to edit a group, e.g. name, group members, administrators of the group etc.|
|Delete||Ability to delete a group.|
|Parameters||Manage which views that will be shown for each User category. E.g. the Template view shall only be shown to Administrator Users.|
|Settings||Settings, e.g. name and address for emails sent from the Service, log level, information in footer, logotype to show etc.|
|Logs view||Logs view.|
|System message||Ability for Administrator User to select a message to be displayed at the top of each page.|
|Report scripts||Area where to handle reports that can be created based on filled-out declarations/risks/actions.|
|Report templates||Area where to handle reports that can be created based on filled-out declarations/risks/actions.|