Oppdatering på norsk
This release represents one of the largest updates to the Diri-application so far, with major improvements across dashboards, reporting, workflows, templates, notifications, and overall usability.
Dashboards and reports are now preconfigured and readily available for modules and in the report designer. We have redesigned the Risk Assessment, Incident, DPIA, and module dashboards to provide better visibility, clearer prioritization, and improved navigation through security and compliance work. The release introduces improved visualizations, smarter aggregation logic, enhanced control matrices, semantic risk coloring, new chart types, and actionable status tracking across the platform.
This release also introduces major improvements to the Privacy module, including automatic prefilling of DPIA assessments based on selected data processing activities and a new simplified registration flow for organizations acting as Data Processors.
This update also adds several highly requested capabilities, including CSV export from all tables, classification level description viewers, improved Bowtie visualization and PDF export, direct template editing, expanded workflow navigation, and major reporting improvements.
Behind the scenes, substantial work has also been done to improve performance, stability, scalability, and security through query optimizations, access control hardening, notification improvements, and remediation of findings from recent penetration testing activities. Users coming in via Microsoft can now be assigned multiple roles.
- First access page for navigating the platform and seeing items belonging to the user
- Improved landing page experience
- Follows the roles of the users - admins get the full page, while users risk, privacy, and compliance sees their respective tasks and features.
- Admins get easier access to important configuration settings
- All modules have pre-defined dashboards with tailored widgets that can be loaded in both english and norwegian depending on the language setting.
- Added:
- Radar Chart widget
- Stacked Bar widget
- Task Progress widget
- Improved Table widget prototype
- Added semantic color coding for risk and maturity scales
- Improved chart ordering, labels, and aggregation logic
- Major redesign of Risk Assessment, Incident, DPIA, and module dashboards
- Improved widget layouts, prioritization, and navigation
- New Treatment Status charts replacing older burndown views
- Better information widgets with clearer ownership, responsibility, and metadata display
- Improved control matrix with clickable treatments, legends, expanded views, and framework filtering
- Added descriptive subtitles and cleaner dashboard layouts
- Added activity logging for template creation, copy, and duplication actions
- Added automatic prefilling of DPIA assessment content based on the selected data processing activity, significantly reducing repetitive manual work
- Introduced a new simplified registration flow for organizations acting as Data Processors rather than Data Controllers
- Added dedicated handling, table views, and PDF reporting for processor-related data processing activities
- Improved the main data processing activity registration workflow for better usability and consistency
- Redesigned DPIA dashboards, workflows, and reporting for improved navigation and visibility
- Improved privacy assessment tracking, review workflows, and treatment follow-up
- Major report designer overhaul
- Preconfigured report templates to use that are plug and play (both english and norwegian)
- Improved widget scaling
- Better PDF rendering and export handling
- Improved archive filtering and organization scoping
- Added CSV export support across the platform
- Hardened exports against formula injection and locale formatting issues
- Added detailed descriptions for:
- CIA classification levels
- Probability scales
- Consequence / impact scales
Fixed a lot in the notifications part of the app.
Added new notifications for:
- Policy assignments
- Policy revision reminders
- Risk assessment review reminders
- Data processing ownership
- Incident participation and reporting
Also added:
- Daily email caps and digest emails
- Better notification wording and translations
- Major Bowtie visualization overhaul
- Improved treatment rendering and severity sorting
- Added compact stepper mode for improvement of step 3 working surface
- Better workflow navigation for Risk Assessments, DPIAs, and Incidents
- Added PDF export preserving live Bowtie layouts
- Direct template editing support - no need to re-create a template for editing, just click edit to access it (if you have the rights)
- Improved template access control
- Better template duplication handling
- Easier template seeding for restricted users
- Restored organization/email display during invitation acceptance
- Fixed first-visit redirect issues hindering signup flow and invitation
- Improved Mailjet signup handling and invitation links
- Fixed dashboard drilldown issues
- Fixed missing risk locations
- Fixed disappearing CIA values
- Fixed multiple widget aggregation errors
- Fixed dashboard layout overlaps and rendering regressions
- Fixed uncategorized treatment counting
- Fixed report designer issues and PDF scaling problems
¶ Risk & Treatment Handling
- Fixed treatment visibility inside templates
- Fixed treatment fetch issues in infographic views
- Fixed risk assessment status calculations and chart rendering
- Fixed missing populated creator/responsible fields
- Fixed restricted role toggle behavior
- Fixed organization transfer handling
- Improved hierarchical permission checks
- Fixed module visibility for Privacy/Cyber/Operational users
- Fixed org inheritance handling after org moves
- Fixed autocomplete dropdowns remaining open
- Improved stepper hover states
- Fixed navigation blinking/full-page reloads
- Fixed search behavior in Users table
- Fixed public page redirect behavior
- Improved scrollbar styling and accessibility
- Improved login error clarity
- Added lockout warnings before account suspension
- Added dedicated account lockout emails
- Extended unlock token validity
- Fixed old notifications missing resource names
- Fixed notification crashes from populated objects
- Suppressed self-notifications
- Multiple TypeScript fixes
- Fixed build regressions
- Fixed logger signature issues
- Fixed SSR/redux persistence issues
- Improved query handling and aggregation stability
This release also includes substantial improvements to platform security, performance, scalability, and overall stability.
We have resolved multiple findings identified through recent penetration testing activities and strengthened access controls, tenant isolation, and data handling across the platform.
In addition, we have significantly improved dashboard performance, search responsiveness, navigation speed, and data aggregation reliability throughout the application.
CSV exports and search functionality have also been expanded to better support larger datasets and day-to-day operational use.