CUI-CPP V2.0 Data Types Secondary Risk Statements

Go to CUI-CPP V2.0 Data Types

1 Definition	2 Functional Requirements	3 Syntax
4 Semantics	5 Conformance Testing	6 Performance Assessment

1 Definition

Self-assessed Company Risks for which an AI Module is not available or may not be used.

2 Functional Requirements

For each Level-1 Risk, three parameters are provided: Impact, Probability, Severity, and Retention.

3 Syntax

https://schemas.mpai.community/CUI1/V2.0/data/SecondaryRiskStatements.json

4 Semantics

Label	Description
Header	Secondary Risk Statements Header
– Standard-SecondaryRiskStatements	The characters “CUI-SRS-V”
– Version	Major version – 1 or 2 characters
– Dot-separator	The character “.”
– Subversion	Minor version – 1 or 2 characters
MInstance	Identifier of Virtual Space.
Level-1Risk1	ID of first Level-1 risk
– Level-2RiskID#1	ID of first Level-2 risk
– Impact	The extent of damage or disruption that would result if the Risk occurred. This is described on a scale: none, Low, Medium, High.
– Probability	The likelihood or chance of a risk event occurring. This is described on a scale: none, Low, Medium, High.
– Severity	A term often used interchangeably with impact, which is the severity of the consequences. This is described on a scale: none, Low, Medium, High.
– Retention	The percentage of the potential effect of the Risk which is retained in the Company, i.e., the percentage which is not transferred to a third party, such as an insurance company.
– Level-2RiskID#2	ID of second Level-2 risk. And so forth for all Level-2 Risks.
– Impact	The extent of damage or disruption that would result if the Risk occurred. This is described on a scale: none, Low, Medium, High.
– Probability	The likelihood or chance of a risk event occurring. This is described on a scale: none, Low, Medium, High.
– Severity	A term often used interchangeably with impact, which is the severity of the consequences. This is described on a scale: none, Low, Medium, High.
– Retention	The percentage of the potential effect of the Risk which is retained in the Company, i.e., the percentage which is not transferred to a third party, such as an insurance company.
Level-1Risk2	Second Level-1 risk. And so forth for all Level-1 Risks.

5 Conformance Testing

A Data instance Conforms with Secondary Risk Statements(CUI-SRS) V2.0 if:

Its JSON Object validates against its JSON Schema.
Any included JSON Object validates against its JSON Schema.
All Data in the JSON Object have the specified Data Types.

Cookie	Duration	Description
cookielawinfo-checkbox-necessary	1 year	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Technical".
CookieLawInfoConsent	1 year	The cookie is set by the GDPR Cookie Consent plug-in and is used to store whether the user has consented to the use of cookies or not. It does not store any personal data.
viewed_cookie_policy	1 year	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
_pk_id.6.08a8	13 months	Used to store a few details about the user such as the unique visitor ID
_pk_ses.6.08a8	30 minutes	Short lived cookies used to temporarily store data for the visit