The Critical Processing Activities report enables you to specify certain classification values as critical, and to then generate a report for only those processing activities that fulfill the criteria that have been configured as critical. So, for example, if a Data Encryption classification with a value of DES or RSA (see screenshot) is considered critical, then processing activities which have a data category with this critical classification will be included in the report. If multiple critical classifications are defined, then a processing activity that has any one of the critical classifications will be included in the report.
To set up a classification as a critical classification, do the following:
1.On the page for the Critical Processing Activities report (see screenshot below), click Add Classification.
2.In the dialog that appears, select (i) a data classification, and (ii) values defined for that classification, and then click OK. The classification (with the selected values) will be added as a critical classification criterion.
3.You can add as many critical classifications as you like.
4.After specifying the critical classifications that you want, select List only critical processing activities to generate a report containing information about only the processing activities that fulfill the criteria specified in the critical classifications. If this option is not selected, all processing activities are reported, with the critical processing activities being marked in bold.
5.You can also choose whether descriptions of data classifications (defined in the data categories of the processing activities) should be shown or not.
6.Select the report format (PDF or Word), and click Create.
Downloading the report opens the PDF in a browser, or the Word file (.docx format) in an application of your choice. Critical processing activities are displayed in the report in a bold font.