API

10.0.0

• It is now possible to obtain an Access-Token through the OAuth2 endpoint /api.php/v1/authorization/token.
• The new config parameters api_debug_request_logger_uri_filter, api_debug_request_logger_method_filter, api_debug_response_logger_status_code_filter, allows to activate a request and response log only for certain API requests for debugging purposes.

Analysis

10.0.0

• The derivation of a process / object evaluation was improved.

BCM

10.12.0

• Within the BIA, the determined RTO value is automatically transferred to the IT systems and contractual partners to be evaluated. The transfer is attached to the status change from “assign resources” to “evaluate resources”.

10.11.0

• The ‘Critical / important according to DORA’ value maintained in the business process is now transferred to the process cluster
• The value ‘Critical / important according to DORA’ is displayed in the process cluster report

10.10.0

• Tasks field added to emergency tests

10.9.0

• Additional fields in resource inquiry report: Process cluster deleted, Evaluation deleted, Rollover date

10.8.1

• Renaming of MTPD to MAO / MTPD

10.8.0

• When a rollover BIA is released, a new emergency plan is created based on the emergency plan of the original BIA
• By default, only the most recent emergency plan is displayed in emergency plan overview
• The emergency plan filter can also be used to display emergency plans that were not recently created
• In the overview of emergency plans, a message indicates whether a successor of an emergency plan is being processed or has been released

10.7.6

• Extension of the resource inquiry report with additional fields

10.7.5

• Users of the BCM-Fachadmin group can now perform all available status changes for emergency tests

10.7.4

• Separate BCM - Resource inquiry report

10.7.3

• Fix: Criticality indicator on process clusters

10.7.2

• Permissions to create emergency tests for BCM-Fachadmin
• Permissions to change flow status of emergency tests for BCM-Fachadmin and BCCs

10.7.1

• Adjustment emergency plans filter: New filter option “Resource type”, Limitation of object types for filter option “Resource”

10.7.0

• BCM Resources Report: Added process clusters to resources
• Additional columns: Process cluster title, RTO (Req & Is), RPO (Req & Is)

10.6.8

• Notification for unassigned emergency test requirements 90 days before due date
• Reminder for emergency test one week before execution date
• Added filter option for emergency test requirements: Assigned to emergency test

10.6.7

• Bugfix: Emergency plan fields can now take longer data sets

10.6.6

• Text adjustment for emergency plans

10.6.5

• Additional ways to filter emergency plans: BCM area, BCM process cluster, minimal BCM process cluster RTO and maximum BCM process cluster RTO.

10.6.4

• Additional ways to filter emergency test: Resource type, Risk score min/max, Risk class

10.6.3

• Additional ways to filter emergency test: Resource, Resource type, Execution date (end of exercise), BCM process cluster, BCM area

10.6.2

• Additional ways to filter emergency test requirements: Resource type, Emergency test, BCM area

10.6.1

• Validation of threat catalog fields

10.6.0

• Added a new analysis: Business processes without assigned BCM-Process clusters
• Display of the number of assigned business processes in BCM process cluster overview

10.5.4

• Enhancement of resource filter: Possibility to filter by risk class and risk score

10.5.3

• Recalculation of read authorizations on BCM areas when assigning a new process cluster

10.5.2

• Added delete rights on process clusters for bcc role

10.5.1

• Removed MTPD-Option “0h” at criticality level K0 in BIA

10.3.1

• Within the BIA, decimal point values can be entered for the resources for IT systems and contractual partners for RTO and RPO.

Calculations

10.0.3

• Improved the rating cache generation

10.0.2

• The traffic light values are now saved in the calculation kernel and invalid data records are deleted during migration.

Comments

10.0.1

• internal Update

10.0.0

• The commented value is now displayed in the dialog window.
• The comment feature has been completely revised from a technical point of view.
• A comment thread is now marked as “unresolved” by default.
• A comment can now be submitted using the Enter key.
  • To insert a line break, Shift + Enter can be used.
• Multiple consecutive comments from a user are now grouped together.
• The comment feature may be accessed from a form directly.

Confirmations

10.0.4

• In the dropdown for confirmations, groups now have the option of displaying the associated group members.
• The right to submit a confirmation is now even more strictly linked to the assigned role / person in order to ensure a segregation of duties.

10.0.3

• Technical version bump.

10.0.2

• Technical version bump.

10.0.1

• Technical version bump.

10.0.0

• Technical version bump.

Contracts

10.20.3

• The field Country of sub-provider is now obsolete and is replaced by the linked business partners’ country.
• It is possible to reset the current value of the field. In this case, the field will then be hidden after saving.
• In affected reports, the country of the linked service provider is now shown instead.
• Affected reports:
  • Cloud - Register Luxembourg
  • Outsourcing notification according to VAG §47 No. 8

10.20.2

• Contract report has been supplemented with missing fields

10.20.1

• It is now possible to configure a logical OR at each KPI Rule

10.20.0

• The business partner import now supports all possible fields including all relevant DORA fields.

10.19.0

• Creation of a new role for the contract management.

10.18.0

• New fields have been added for the servicer report:
  • Country of the parent company
  • Lei. No. of the parent company

10.17.5

• A new DORA KPI rule was added
• A new button “Show explanation” was added to the contract list.
  • Via this button it is possible to show an explanation of specific properties i.e. ICT or CIF.
• The field “Registered office abroad” is now outdated and replaced by “Office country of contracting party”

10.17.4

• Added new checklists DORA ICT and CIF
• Added a new checklist Testing von Exit Optionen
• Added a new KPI rule DORA ICT and CIF

10.17.3

• The sub-outsourcing field “Short description” is now mandatory

10.17.2

• Adjustment ECB Outsourcing register R.01.01 Contract information: Output of the number of risk characteristics in ECB 360 column

10.17.1

• KPI rules: Underlying sub-outsourcings are now ignored, in case a contract rule is applied on a business partner

10.17.0

• The field “Group membership of business partner” for a contractual partner is now marked as a mandatory field by default due to its relevance for the information register.

10.16.0

• In the synchronization mask for contracts, all checkboxes can now be selected or deselected at once.

10.15.3

• Sub-legal entities can now also be selected in the synchronization mask for contracts.

10.15.1

• The report “EZB Outsourcing register R.01.06 Sub-contractors” now contains all suboutsourcings. As additional filteroption a new selection column “Further transfer of essential functions or parts thereof” has been added.
• The search for duplicates on creation of a new business partner now takes the users tenant into consideration

10.15.0

• It is now possible to select multiple options for the fields “Type of cloud deployment model” and “Type of cloud service model”.

10.13.0

• The transition from “In progress” to “Final review” has been removed for suboutsourcing.
• Cancel contract action is available for suboutsourcing contracts and vendor contract/service delivery

10.12.1

• The field type has changed for the “Applicable Law” field. Now only the country code is saved in this field, which helps to translate the countries correctly.

10.12.0

• The system internally builds the DORA function register
• Added a new report “DORA Function register”

10.11.5

• If a contract references legal entities in the regulatory scope of consolidation that make use of outsourcing, the field “Will institutions / companies in the regulatory scope of consolidation make use of outsourcing?” is automatically answered in the affirmative.

10.11.4

• If a contract has been declared as EBA-relevant, selected fields in the status “Other contract components” now correctly become mandatory.

  Affected fields:

  • Country or countries where data is located
  • Description (Content / Service)

10.11.2

• The contract report was expanded by additional contract fields.

10.11.1

• The contract report was expanded by additional contract fields.

10.11.0

• The separator for the following fields has been adjusted in the importer so that multiple entries can be imported:
  • Country or countries where the service is to be performed
  • Country or countries where data is located
• Associated processes are searched for in the contract importer not only by number, but also by external ID.
• Associated IT systems are searched for in the contract importer not only by number but also by external ID.
• The error log when dropdown values do not match has now been made a little clearer.
• A “contract wizard” widget has been added, which can be used to jump directly to the available contract wizards.

10.10.4

• The suboutsourcing field “Are critical or important functions sub-outsourced?” was consolidated into “Further transfer of essential functions or parts thereof”. Values have been migrated automatically.

10.10.3

• Technical version bump.

10.10.2

• The DORA Field “Licenced activity” contains now automatically the fitting activities.

10.10.1

• A new field “DORA: Possibility of reintegration of the contracted ICT service” was added under the tab “Additional info”.

10.10.0

• The report template “ECB Outsourcing register” has been renamed to “ECB outsourcing register until 2023”.

10.9.0

• There are two new fields in the “Duration” tab on a contract:
  • Trigger/s for early termination
  • Duration of post-termination assistance

10.8.1

• Recalculated permissions for insourcing arrangements

10.8.0

• In the “path” of a contract, the outsourcing institution is displayed at the beginning (if there is one).
• Contracts can be filtered by outsourcing institution.

10.7.0

• Added new DORA and OCIR fields to the contract and servicer model, more information about the DORA implementation at: artemeon.atlassian.net/wi...rm

10.6.9

• API: The servicer and contract result is now sorted alphabetically
• API: The servicer and contract endpoint is now aligned with the facet logic

10.6.8

• Notification acc. BaFin (MVP specialist procedure): Added two new columns “Termination reference of the client” and “Termination reference of the business partner”

10.6.7

• Update on existing fields and new fields for reports for reporting period 2023 via CASPER: Level 1 and 2 functions, option to add service partners as parent companies, option to add service partners as alternative service providers, intragroup outsourcing also for suboutsourcings.
• Seven new report templates “ECB Removal Register R.01.01 to R.01.07” containing data for reports to the ECB via the CASPER portal. Each report corresponds to a table in the template.

10.6.6

• “Highest materiality of the selected business processes” field has been added to the contract form.

10.6.3

• Legal entities can now be assigned to contractual partners. The import of contractual partners has also been expanded accordingly.

10.6.2

• Technical version bump.

10.6.1

• Fixes an error when searching for a business partner without a logo.

10.6.0

• Adds the possibility to group archived files (if available).
• Information security protection requirements and BCM RPO/RTO values can be transferred from the processes and IT systems linked to the contract with a single click. If ISMS@ARTEMEON is available, the values are derived from the assets.

10.5.8

• Technical version bump.

10.5.7

• The result of the cloud outsourcing check is cached on the facts for performance reasons

10.5.2

• Fixes a permissions issue in contract registry checks.

10.5.1

• The new outsourcing type “Outsourcing arrangement” has been added to the quick check scores

10.5.0

• Inclusion of the optional contract fields.
  • Cost -> Yearly costs (net) planned for next year
  • Duration -> Other Information
  • protection, InfoSec, BCM -> If other sensitive data is processed by the servicer?

10.4.9

• “Title” and “Status” fields have been added to contract registry checks.

10.4.8

• The description on a contract register check has been removed.

10.4.7

• Fixes an issue where root nodes could not be selected when adjusting a parameterization.

10.4.6

• Renaming Tab from “Data protection & information security” to “Data protection, InfoSec, BCM”
• Inclusion of the fields
  • protection, InfoSec, BCM -> RTO (Recovery Time Objective)
  • protection, InfoSec, BCM -> RPO (Recovery Point Objective)
  • protection, InfoSec, BCM -> Comment MTPD (Maximum Tolerable Period of Disruption)
• Moving Field at Contract
  • MTPD (Maximum Tolerable Period of Disruption)
• All of the above fields have been brought together under the header “Business Continuity Management (BCM)”
• “BCM agreement” was added as an additional attachment type at “Reports & Attachments” -> “Contract attachments” -> “Type of attachment”.

10.4.5

• Inclusion of the field “Outsourcing OU or service recipient” to report “C2-Sub-outsourcing (contracts)“

10.4.4

• Inclusion of the fields:
  • “Data protection & information security -> Disclosure of secrets protected under StGB §203
  • “Data protection & information security -> Comment Disclosure of secrets protected under StGB §203
• “Disclosure of secrets protected under StGB §203” is only displayed for contracts that are treated as insurance company (VU) for regulatory purposes.
• The associated comment field is only displayed if “Disclosure of secrets protected under StGB §203” was answered with “Yes”
• Inclusion of the field “Additional info -> Remote access to or remote maintenance of the client’s systems” on the contract.
• Inclusion of the field “Additional info -> Comment Remote access to or remote maintenance of the client’s systems” on the contract.

10.4.3

• Fixes a problem when uploading a logo to a business partner

10.4.2

• In the report “Notification acc. BaFin (MVP specialist procedure)”, the column “Which institutions, payment institutions or other companies within the scope of consolidation or the institution-related protection scheme use the outsourcing?” is now composed differently.
  • Data origin is now as follows: Contract, additional data, users & locations of service provision, institutions / companies within the scope of the institution-based protection scheme that make use of outsourcing AND institutions / companies within the regulatory scope of consolidation that make use of outsourcing.

10.4.1

• Inclusion of the field “Additional info -> Comment Objective reasons for delegation” on the contract.
• Disabled fields “Objective reasons” & “Comment” on the supervisory reporting.

10.4.0

• Inclusion of the field “Data protection & information security -> Transfer of confidential or sensitive data” on the contract
• Inclusion of the field “Data protection & information security -> Processing of confidential or sensitive data” on the contract
• Text adjustment of the options in the “Additional data -> Who approved the outsourcing arrangement?“

10.3.0

• Inclusion of the field “Data categories (DSGVO)” on the contract
• Inclusion of the field “Service provider has read rights” in the contract
• Inclusion field “MTPD” on the contract

10.2.0

• New field “version” for reporting requirements and contract attachments.
• Contracts no longer closed on the last day of contracts validity. They are now closed on the next day.

10.1.0

• Added new field “Business partner is affiliated partner” to business partner.
• Contracts are grouped by contract type, contract state and product group automatically.

10.0.0

• Contracts wizard is enabled by default
• A logo can be uploaded for a business partner, which is then displayed in the search preview, for example.
• Sub-outsourcing may be created at every level below a business partner.
• A “short description” was added to sub-outsourcing again.
• A new contract field “Notifications / KPI Monitoring” was added, through this field it is possible to control the ongoing monitoring.
• A new action “KPI Rollout” was added, this action adds the contract to the ongoing monitoring process.
• File uploads are now grouped by assignment.
• KVG due diligence checklist added as optional checklist for business partners

Dashboard

10.3.1

• Missing cat pictures are now displayed again 😻.

10.3.0

• The “Overview” module has been renamed to “Dashboard”.

10.2.1

• Fixes a bug when generating iCal objects.

10.2.0

• Bring a little Christmas cheer to your AGP@ARTEMEON dashboard with the new Advent wreath widget. 🎄

10.1.0

• Technical version bump.

10.0.0

• The selection dialog for widgets has been completely revised and is called “WidgetStore” now.
• The dashboard templates are listed directly inside the WidgetStore and new dashboards can be created from those templates.

DevOps

10.0.0

• It is now possible to use Memcached as cache engine instead of APCu.

Import

10.1.0

• The importer’s log files are no longer saved in the database. The database table ‘agp_importlog’ has been removed.
• All log files are now stored in the file system and can be downloaded easily.
• The logs are now in the CSV format and can be opened in Excel.

10.0.0

• The user import has been enhanced and now also has fields for username, phone number, mobile number and language of user interface.
• When the user import gets executed for existing users, their group assignments get cleared and are being reset to those defined in the Excel import file.

Findings

10.1.0

• You can now search/filter directly for the filter text in the list of all findings without having to open the filter first.

10.0.0

• Technical version bump.

Flow

10.0.1

• Removes duplicate flow statuses from the flow graph.

10.0.0

• Invalid status changes are now displayed as deactivated in the status dropdown. A ? symbol to the right of the status change can be used to display further details as to why the status change is not possible.

Frontend

10.3.1

• Scrollbar issue fixed

10.3.0

• The UI of selection fields has been fundamentally revised and adapted to the general look and feel of the AGP.

10.2.0

• In the selection window of an autocomplete field, now you can narrow the result list by searching through a search field.

10.1.0

• AutoComplete fields now have an additional icon next to the keyboard icon that can be used to display a list of available options and select options. For multi-selection fields, multiple options can also be added directly at once via this list.

10.0.0

• Introducing a new dark mode.
• In long forms divided by different tabs, the tabs at the top now remain visible when scrolling down. This makes it easier to switch back and forth between the different tabs.
• The dialog windows that previously opened when there was a possible status change, for example, are now displayed as notifications at the top right.

GDPR

10.2.0

• If a contractual partner is specified, the specific entry from contract management can also be linked as an option

10.1.0

• Optional inclusion of OpCo data structures for mapping corporate groups

IRM

10.9.3

• Internal update

10.9.2

• Missing risk scores in potential risks are displayed again.

10.9.1

• The ‘Archived’ status has been added to IRM riskanalyses.
• When deleting assets, the associated IRM riskanalyses with the status ‘Released’ are transferred to the status ‘Archived’.

10.9.0

• The ‘Risk class’ field has been added to the Potential risk overview and report. The field must be activated via configuration.

10.8.2

• In the “Potential risks” report, the scores have been adjusted so that both the normalized and the calculated score are now displayed.
• Both scores are now also shown in the “Potential risk” report.

10.8.1

• Removed delete permissions for IRM riskanalyses and individual risks from all roles except IRM_FACHADMIN.

10.8.0

• Add ActionStrategy selection to potential Risks

10.7.0

• If a measure is created from a potential risk, the associated asset is also added to the measure as a Assigned dataset.

10.6.0

• The “Score” field is now visible in the “Potential risk” editing screen.
• This field can only be filled in for a new creation.

10.5.0

• New fields in report “Individual risks IRM”:
  • Risk assessment and treatment date
  • IRM Measures date
  • ISM release date
  • Release by voting partner date
  • Risk approval date
  • Released date

10.4.3

• If a measure is in “Processing confirmed”, it is no longer possible to edit it.

10.4.2

• If an IRM task in the workflow status Processing is set to the status completed, the workflow status is also set to Processing confirmed.

10.4.1

• New workflow for sending notifications for unprocessed IRM risk analyses

10.4.0

• New field in Individual risk: Publish date
  • The date is updated as soon as the risk status is notified or opened.
• The Report Individual risks IRM contains the publish date field

10.3.1

• The ISM GOVERNANCE role with rollover rights for IRM risk analyses is added

10.3.0

• Score calculation when transferring the deviations to potential risks

10.2.0

• The potential risks were expanded to include the value of loss exposure

10.1.1

• New field in report “Individual risks IRM”: IRM Release Date

10.1.0

• You can now search/filter directly for the title in the list of potential risks without having to open the filter first.

10.0.2

• New fields in report “Potential risks IRM”: Legal entities, Owners organizational units

Infosec

10.8.4

• The comment field for the responsible person’s acknowledgement of exemptions is now a mandatory field.

10.8.3

• Internal update

10.8.2

• Internal update

10.8.1

• Missing translations were added.

10.8.0

• It is no longer possible to select a date in the past for the “Due date of approved deviation” field.

10.7.3

• Internal update

10.7.2

• The permissions on the chapters of a protection requirements assessment are now more strictly based on the basic permissions of the protection requirements assessment

10.7.1

• The title of the audit findings has been added to the report of the same name.

10.7.0

• A data set for recording audit findings has been added

10.6.3

• Extension of the filter options for protection requirements assessments and security concepts
  • “Asset”
  • “Asset class”
  • “Asset typ”
  • “Legal entities”
  • “responsible User”
  • “Organization”
  • “Show assets of subordinate organizational units”

10.6.2

• IT owner and their organizational unit can now be displayed as individual fields in the “Asset” reports.

10.6.1

• IT Owner and their organisation unit can now be displayed in the “Asset” reports.

10.6.0

• The number of the reference object can now be displayed in the “Asset” reports.

10.5.0

• The AutoSave functionality is now activated on Security Concepts (SeCo). The changes are now automatically saved every 20 seconds.

10.4.3

• The ISM GOVERNANCE role is added with rollover rights for protection requirements assessments and security concepts

10.4.2

• Optimized loading times when evaluating the specifications of security concepts

10.4.0

• Add Score Calculation for deviations in the Gap-Analysis

10.3.1

• The takeover of the probability of occurrence and the damage potential from the linked threat of a security concept is deactivated by default.
• There are two options for taking over values, which can be activated via configuration:
  • Display of buttons next to the fields so that the values can be taken over optionally.
  • Automatic setting of the values, the fields cannot be edited.

10.3.0

• Internal update

10.2.1

• Internal update

10.2.0

• The Expectation of damage and the loss exposure can now be transferred from the risks during the Gap-Analysis to the deviation.

10.1.2

• In the summary of security concepts, unfulfilled or only partially fulfilled specifications are now marked with a red icon.

10.1.1

• If the VVT module is not available, the personal data can be taken from higher-level assets in a protection requirements assessment.

10.1.0

• You can now search directly for the object number and name in both the list of protection needs determinations and the list of security concepts without having to open the filter first.

10.0.17

• internal update

10.1.16

• New field on exceptions: “Initial file upload of the exception”

10.1.15

• Customized confirmation text for the exemption object for the transition from “Exemption created” to “Check exemption”

10.0.14

• New button to show specification summary in Gap analyses
• New buttons to adopt the highest damage occurance from linked threats

10.0.13

• New fields on asset report: Number of superordinate assets, Number of subordinate assets

10.0.12

• The title and description of vulnerabilities can now be entered on a language-specific basis.

10.0.11

• New field “Relevant for the following module(s)” added to threats, set to ISMS for existing ones

10.0.10

• The property “Further information for implementation” can now be maintained for the Infosec specifications.

10.0.9

• The following new fields have been created for threats: Threat type, Example scenarios, Type of threat source
• In addition, the following fields for threats can be found under the heading “Source”: ISO/IEC 27005:2022, IT basic protection elementary threats, CITCC (BlueBook)
• The 6 new fields can also be filled in via the threat importer

10.0.8

• The current version of specifications can now be activated manually.

10.0.7

• Added the management of exemptions

10.0.6

• System relevant Specification Sources can not be edited anymore.

10.0.5

• internal update

10.0.4

• internal update

10.0.3

• New object and list view “Exceptions”

10.0.2

• In order to standardize the handling of the security concept with the other forms in the system, the fields (apart from the “Overall Comment”) are now generally displayed as required fields. The “Overall Comment”, which was previously marked with “(optional)”, no longer has a corresponding marker.
• Four new widgets are now available: Potential risks, IRM single risks, PRA in highest PRC per protection target, Status gap analyses/security concepts.
• In Infosec widgets, only objects in status Released are being evaluated.

10.0.1

• “Threats” have been renamed to “Elementary threats”.

10.0.0

• Technical version bump.

Information Network

10.4.0

• A dossier can now be displayed for assets.

10.3.2

• The value ‘Critical / important according to DORA’ is now displayed in the asset report

10.3.1

• The ‘Critical / important according to DORA’ value maintained in the business process is now transferred to the asset and inherited by all child assets.

10.3.0

• The ‘External ID’ field has been added to the asset filter.

10.2.3

• Higher-level assets can now also be maintained directly on the asset

• 10.2.2

• Added deputy owner rights to edit the asset

10.2.1

• internal Change: use Number-Field for the internal reference for Information Clusters

10.2.0

• Assets can now be created from organisational units.
• If an organisational unit is deleted, the linked asset is also deleted.
• Import of potential risks can now be referenced with the OU number.

This feature is deactivated by default and must be activated via Artemeon.

10.1.1

• The ISM GOVERNANCE role with edit rights for assets is added

10.1.0

• internal update

10.0.6

• Enhancement of the asset categories by adding the Asset class / Type of Reference object for automatic assignment of the asset categories when creating an asset.

Evaluations

10.3.0

• When a evaluation in status “Review” gets rejected, a comment must be provided now to inform the responsible for the evaluation about the rejection reason.

10.2.0

• You can now search/filter directly for the filter text in the lists of all evaluations and your evaluations without having to open the filter first.

10.1.0

• The “Delete MEP confirmation” action was relocated into the “Show more” menu.

10.0.0

• When creating a new evaluation, the evaluation can now be taken from one of the last 5 entries under “Fill in KPI/KRI evaluation”.

LDAP

10.0.1

• Fixes an issue where the system could not automatically synchronize with the LDAP interface.

10.0.0

• Technical version bump.

Mediamanager

10.1.0

• File uploads are now more closely linked to the associated data records. This means that access authorizations can be validated even more strictly.

10.0.0

• Technical version bump.

Messaging

10.2.0

• Improved performance when accessing the list of messages.

10.1.0

• You can now search/filter directly for the content of the messages in the message list without having to open the filter first.

10.0.0

• Technical version bump.

OAuth2

10.1.0

• It is now possible to configure a certificate to obtain an access token

Object Designer

10.1.0

• The type selection for a new criterion has been technically and visually revised and optimized.

10.0.1

• Improve internal performance by cache updates

10.0.0

• The criteria assignment in the object designer has been technically and visually revised from the ground up.
  • Basically, fewer complete page reloads are now required, which improves the general user experience.
  • The individually assigned criteria are now visually better separated from each other.
  • The tree with available criteria is converted to an accordion.
  • Pending changes to criteria can now be reset.
  • Caution!: The function to assign criteria via drag-and-drop has been removed. Please use the checkboxes to select criteria and then assign them.

Process management

10.4.2

• Renaming of the german translation of Legal Entities to “Rechtliche Einheiten”.

10.4.1

-The values of the “Responsible authority” field have been adjusted.

10.4.0

• For business processes, the fields “Kritis relevant according to KritisV” and “Reason for Kritis Relevance” have been added under the “Criticality” tab.

10.3.1

• The “Sachverhalte” node now gets displayed as “Arrangements”.
• The “Weiterverlagerungen” node now gets displayed as “Sub-outsourcings”.
• The “Geschäftsprozesse” node now gets displayed as “Business processes”.
• The “Warengruppen” node now gets displayed as “Product groups”.

10.3.0

• The business process report has been extended to include the fields “Description” and “Notes”.

10.2.8

• The attribute ‘confidentiality’ has been added to the InformationCategory model
• The BusinessProcess Importer now supports ProtectionRequirement values

10.2.6

• Add Root Node for Buildings if not present already

10.2.5

• Fixes an issue where Legal Entities could not be selected correctly.

10.2.1

• The Dora definitions of the objects have been added to the object management. The descriptions of the definitions are displayed in the note texts as info popups in the corresponding fields.

10.2.0

• Added new report template “Rateable Subprocess Changes”

10.1.2

• A new field ‘Foreign branch’ has been added to the IT system

10.1.0

• Added DORA fields to the legal entity and business process models, more information about the DORA implementation at: artemeon.atlassian.net/wi...rm
• Added a new hierarchy “Type of Financial Entity”, this hierarchy represents the DORA management system where it is possible to assign legal entities and business processes to the corresponding Type of Financial Entities and Activities.

10.0.10

• In the object hierarchy a maximum of 100 additional data records can now be loaded by using the button

10.0.9

• Existing IT systems can be deleted during import by using the cleaner

10.0.7

• A new object “Regulatory function type” was added to the object repository

10.0.6

• It is now possible to assign legal entities to a business process

10.0.1

The following changes have been made under “IT Systems”:

• The Type field has more selection options.
• A new field has been added: Assigned legal entity

10.0.0

• There is a new option to configure a rating calculator for a specific checklist.
• The 4-eyes safe change mode, relevant when editing or creating new objects in the object hierarchy (disabled by default) was removed from the platform. All changes are logged in the changelog.
• A new criterion “Opening question” was added, this criterion shows or hides subsequent criterions based on the configured answer.
• The titel of business processes can be specified in additional languages defined via the languages module.

Regulatory Reporting

10.0.4

• The following now applies for RT.02.01, RT.02.02, RT.03.01, RT.03.02, RT.04.01, RT.07.01:
  • All suboutsourcings under contracts where the serciver in the higher-level contract is NOT part of the outsourcing institution are not listed

Report Generator

10.2.0

• A column can now also be filtered for “not equal”, “does not contain” and “is empty”.

10.1.0

• When selecting fields for a report, all fields can now be removed with one click.

10.0.3

• Technical version bump.

10.0.2

• Technical version bump.

10.0.1

• editable view & edit permissions on report configurations added

10.0.0

• The Report Generator has been completely revised technically and optically.
• Fields can now be shown and hidden via a dialog window.
• Up to three fields can now be “pinned”. These are then sticky on the left hand side of the screen, even if you are working with large reports and scroll to the right.
• Large reports can now be scrolled horizontally by “moving” the area with the mouse using drag-and-drop (similar to scrolling on a smartphone).
• For text fields it is possible to select a comparison operator.
• Certain permissions can be configured per report.
• The Field “report object” was renamed to “report template”.

Risk Analysis

10.6.2

• Optimize the PDF display of matrix configuration and risk assessment

10.6.1

• Update legal monitoring risk analysis flow

10.6.0

• New menu item “Frequency configurations” lists all frequency configurations for resubmitting risk analyses.
• Some actions for risk analyses with active successor have been deactivated (e.g. edit, reset workflow)

10.5.0

• Several blocks can now be added to the AND conditions in the matrix configuration. These are linked to each other via OR.

10.4.2

• Re-introduced the object filter to the heat map report.

10.4.1

• In the “Question Yes/No with comment” risk template, the “Mandatory comment” field has been added, so that it is possible to set a comment as the mandatory field.

10.4.0

• Added basic connectivity to bcm module

10.3.0

• When editing a risk analysis, the relevant contract data (Time criticality of the outsourced process, confidentiality, Integrity / Authenticity, Availability) can be displayed via a button now. This functionality is only available for risk analyses with a linked contract.
• The assessment view of individual risks is saved at an automatic interval

10.2.0

• The Sub-Outsourcing frequency calculation was adjusted, we now use automatically the frequency from the parent risk analysis. Customers with a custom calculation logic are not affected by this change.

10.1.0

• Customers of the AGP standard version can obtain new acknowledgements in the approval process of a risk analysis from the ‘final review’ status, without having to go through the entire approval process again. The authorised users to be involved can be freely defined. Previously obtained acknowledgements remain unaffected.

10.0.1

• An average annual loss potential threshold can be defined in the risk matrix, above which the risk analysis is classified as material.

Search

10.3.0

• The search log was removed.

10.2.0

• By default, the search is performed with a wildcard at the end of the search term. For a full-text search with a wildcard at the beginning and end of the search term, the a* symbol can be clicked.

10.1.0

• It is now possible to select text on the page and then use the global keyboard shortcut CTRL + K (CMD + K on the Mac) to open the search with the selected text prefilled directly.

10.0.0

• The global search now understands simple mathematical tasks and calculates them.

Structure Visualizer

10.1.0

• A grid background has been added to the visualization to make it clear that the entire canvas is moving.

10.0.0

• Implementing of a module to display linked processes like e.g. Outsourcing sub-contracting chain

Summary

10.2.0

• An additional button allows all fields to be expanded or collapsed.

10.1.0

• The section headings now display “collapse” or “expand” on the right to make it clear that the sections can be expanded or collapsed.

10.0.0

• The Status Flow Graph in the summaries was redesigned and optimized technically.

System

10.8.3

• The size of the payload column of a command in the database has been increased to accommodate more data.

10.8.2

• If multiple tabs exist for the same page where autosave is active, autosave will now only be active in one of the tabs. For the other tabs, you will now be asked whether automatic saving should be (re)activated in order to prevent potential data loss.

10.8.1

• Before you are automatically logged out, a message will appear informing you, and you have the option to extend the session.

10.8.0

• When you hover over a user in various places in the application, an information window opens that lists more detailed information about the user.

10.7.2

• Bugfix.

10.7.1

• The performance of entries in the change history has been optimized.

10.7.0

• You can now search/filter directly for the name of a user or group in the user list and the group list without having to open the filter first.

10.6.0

• In the menu there is now the option to collapse all (expanded) modules together.

10.5.3

• Adjust database indexes for MySQL and MariaDB

10.5.2

• The message queue can now be executed and debugged using an explicit “system:trigger-consumer” command.

10.5.1

• Fixes a problem when uploading an avatar image to a user account.

10.5.0

• In the user settings you can now specify, which theme (light / dark / system) the AGP@ARTEMEON should be displayed with. Previously this was limited to the operating system settings.

10.4.0

• If single sign-on is not available, the last logged in user is now cached and pre-filled when you log in again, so that only the password needs to be entered.

10.3.2

• Technical version bump.

10.3.1

• Removed unneeded old fields from the user model.

10.3.0

• Removed old code.

10.2.0

• Removed old code.

10.1.0

• It is now possible to upload a custom profile avatar, which gets displayed in several places across the system.

10.0.0

• Introducing a new Form Zen mode.
  • The Zen mode hides all fields that are not mandatory or have not been filled out.
  • The Zen mode can be switched on using the button in the header (two horizontal lines).
  • The Zen mode can be switched off again using the button in the header (several horizontal lines).
  • In addition, the Zen mode can be switched via the search, for example by searching for “zen”.
• The input field for selecting a user has been completely revised technically and optimized in terms of user-friendliness.
  • In the course of this, the “user browser” has also been removed. Instead, you now get an “on-focus” preselection in the form of an AutoComplete dropdown.
• The process input field has been completely technically revised and optimized in terms of user-friendliness.
  • The delete button has been removed. It is now sufficient to simply remove the content of the input field.
  • The “Process Browser” has been removed. Instead, you now get an “on-focus” preselection in the form of an AutoComplete dropdown.
• The dropdown menus have been completely technically revised and can now be navigated using the keyboard.
  • The arrow keys can be used to jump through the menu items.
  • The active menu item can be selected with Enter or Spacebar.
• The “destructive” actions (such as “Delete”) in the “Show more” dropdown in the lists are now sorted at the bottom by default and are also visually separated from the other actions with a separator line.
• Fields that can be maintained in several languages, the individual fields are now displayed together in tabs. By selecting a language, the corresponding field is displayed.
• The list filters have been optically revised system-wide.
  • The filters are now opened in a slide-over.
  • Active selected filters are displayed above the list.
  • All lists whose filter includes a “Title” field now show a search bar above the list, which can be used to search for the title directly.
• The manual sorting in lists (if available) can now be reset using a corresponding button.
• In selection fields where users can be selected, the own user (if possible) is now displayed in the first position initially.
• The prompt for unsaved changes in forms has been optimized.
• The message inbox has been reworked and now opens in a slide-over.
• In the users list, the “Reset password” action has been moved to the “Show More” dropdown.
• The modals for group assignments of users and member assignments of groups have been completely revised technically and optically.
• The fields for changing the password have been moved to a separate dialog window that can be accessed via the edit user screen.
  • The current password is now also requested in the new dialog window.
  • When assigning a new password, feedback is given directly whether the entry complies with the password guidelines configured in the system (e.g. password length or number of lower case letters).

Tasks

10.3.1

• Pages on which there is an action form field are updated directly and no longer need to be reloaded when a task is added.

10.3.0

• It is no longer possible to select a date in the past for the “Due date” field.

10.2.2

• Fixed a rare constellation where the owner could not view an action.

10.2.1

• New user group “MEASURES_ADMIN” with authorization to edit and delete the measures based on associated objects.

10.2.0

• The icon of a task now reflects the current status (open, in progress, completed).
  • A green circle with a dot means “Open”.
  • A blue circle with three dots means “In Progress”.
  • A purple circle with a tick means “Completed”.

10.1.0

• You can now search/filter directly by title, comment and organizational unit in the list without having to open the filter first.

10.0.1

• Technical version bump.

10.0.0

• Technical version bump.

Tiny URL

10.1.0

• The handling of the so-called TinyURLs has been improved.
  • After the call you will now be redirected to the original URL.
  • The TinyURL now contains more URL parameters from the original URL.

10.0.0

• Technical version bump.

Tasks

10.4.0

• Acceleration of the display for profiles with a large number of assigned issues.
• Measures are now only transferred to the open items for responsible persons and reviewers.

10.3.0

• The list of tasks has been extended by displaying the “Open since” column and sorting by creation date.

10.2.0

• The “Open Tasks” widget from the Dashboard module has been moved to the new Tasks module.

10.1.1

• The tasks that were previously located in the Dashboard module have been migrated to the new structure in the Tasks module.

10.1.0

• A new entry for tasks has been added to the menu. The menu item also shows the number of open tasks.

10.0.2

• The structure of the task has been enriched with additional internally required data.

10.0.1

• The structure of the task has been enriched with additional internally required data.

10.0.0

• New tasks module, the old implementation in the module dashboard has been removed and rewritten from scratch.
• Performance of the tasks widget was improved significantly.

Workflows

10.1.0

• You can now search directly for the class name in the list of workflows without having to open the filter first.

10.0.0

• Technical version bump.