Impact radius for regulatory alerts of type regulatory event

  • Release version: Yokohama
  • Updated July 31, 2025
  • 2 minutes to read
    • Summarize
    Summarized using AI
    This content was generated using new OpenAI-powered functionality. Results are provided on an as is basis and are not guaranteed to be accurate or complete.

    Summary of Impact radius for regulatory alerts of type regulatory event

    The Impact Radius feature in the Regulatory Change Management application helps ServiceNow customers assess how far-reaching a regulatory event’s impact is on their organization. It calculates the extent to which a regulatory change affects various governance, risk, and compliance (GRC) objects, enabling targeted action planning. Introduced in the Yokohama release, this feature enhances how regulatory alerts of type “regulatory event” are managed by broadening the scope beyond just citations to include other critical impacted areas.

    Show full answer Show less

    Key Features

    • Impacted Areas Tracking: A new table (sngrcregchangeimpactedarea) captures multiple impacted items related to a regulatory event, including citations, control objectives, policies, authority documents, controls, acknowledgment campaigns, policy categories, exceptions, risk statements, risk frameworks, and risks.
    • Automatic Impact Radius Calculation: When impacted areas are added to a regulatory alert and assigned to a user who marks it as applicable, the system automatically generates regulatory tasks assigned to users.
    • Action Task Generation: Upon user response to regulatory tasks, action tasks are created for each impacted area, supporting detailed remediation and compliance efforts. Additional action tasks can also be added manually as needed.
    • Compliance Workspace Integration: The Compliance Workspace visually displays regulatory changes categorized by impacted areas within the Tracking widget, providing enhanced visibility and monitoring of regulatory events.

    Key Outcomes

    ServiceNow customers can expect a more comprehensive and automated approach to managing regulatory events affecting their compliance and risk posture. By capturing a wider range of impacted areas and automating task creation, organizations can better prioritize and respond to regulatory changes. The integration with the Compliance Workspace further enables real-time tracking and insight into regulatory impacts, facilitating improved governance and risk mitigation.

    Adding impacted areas to a regulatory alert of type regulatory event helps to calculate the impact radius of a regulatory alert. Impact radius typically refers to the extent to which a regulatory change affects an organization.

    Impacted areas

    The regulatory events that could have an impact on the compliance or risk posture of your organization should be assessed. Calculating the impact radius is a method for assessing the impact of the regulatory event on the GRC objects and for suggesting action tasks based on the assessment of the impact. The Regulatory Change Management application supports the impact radius calculation process for a regulatory alert. Calculating the impact radius is a method of automatically creating action tasks for the users.

    Regulatory alerts are of two types:
    • Regulatory event
    • Source document
    Prior to the Yokohama release, the Regulatory Change Management users had the option to add only one or more number of citations impacted due to any regulatory change. This led to sole reliance on only citations and omitted taking other business operations such as policies, control objectives, controls, risks, third-parties, and so on, into consideration. To address this problem, a new table called impacted area (sn_grc_reg_change_impacted_area) is created and it captures the following items including the previously captured citations:
    • Citation
    • Control objective
    • Policy
    • Authority document
    • Control
    • Acknowledgment campaign
    • Policy category
    • Policy exception
    • Risk statement
    • Risk framework
    • Risk
    Note:
    Impacted areas can be added to regulatory alerts that are of type regulatory event. For more information, see Add impacted areas manually to a regulatory alert

    Impact radius calculation

    When you add impacted areas to regulatory alerts of type regulatory event, assign it to a user, and the user marks the alert as applicable, regulatory tasks are automatically generated. The regulatory tasks are then assigned to a user. When the assigned user of the tasks chooses to respond to the tasks, action tasks for each impacted areas are generated. However, you can also manually add more action tasks, other than the ones that are automatically created based on the impacted areas.

    Representation of regulatory changes in the Compliance Workspace

    The Compliance Workspace is updated to display the regulatory changes by impacted areas. The following figure displays the regulatory changes section under the Tracking widget.
    Figure 1. Regulatory changes on the Compliance workspace
    The figure shows the link to the Regulatory change management dashboard and the regulatory change tasks.