Calculate the impact of regulatory changes and recommend related tasks using impact radius calculation. An impact radius is calculated for both types of regulatory tasks, which are regulatory change tasks and source document import tasks.

The Regulatory Change Management application supports the impact radius calculation process. Calculating the impact radius is a method of recommending action tasks to the users.

The regulatory events that could have an impact on the compliance or risk posture of your organization should be assessed. Calculating the impact radius is a method for assessing the impact of the regulatory event on the GRC objects and for suggesting action tasks based on the assessment of the impact.

The following steps are used for the process of impact radius calculation and for automatic task recommendation:

1. The existing regulatory library is searched for the matching citation names, the name of the provider, and the source field.

   For a regulatory event alert, the citations associated with the alert are listed in the Related Documents list. For a source document alert, the citations associated with the alert are displayed in the Citation field.

2. If the matching citation is from the same provider or if the provider source field is empty, then new action tasks are recommended to the user.
3. The action tasks that are recommended by the application are automatically created with the control objective as the action target. The tasks are displayed in the action tasks related list.

   The applicability of the created action tasks is set to False by default.

4. The user with the sn_grc_reg_change.user role reviews the actions tasks. If the tasks are applicable, then the user sets the Applicable field to True and requests an approval on the parent regulatory task.
5. The approver can approve the parent regulatory task, reject it, or ask for more information on the task.

   After the parent regulatory task is approved, its applicable child action tasks are moved to the Ready state. For non-applicable child action tasks, those tasks get canceled.

6. When an action task is completed, the associated regulatory tasks get closed.

Business users and managers with the sn_grc_reg_change.manager role can review the action tasks. They can manually add action tasks in case the application does not display suggestions for any action tasks. Both the approver and the compliance user can read the comments for each object to get more information about the associated action tasks.