User Handbook
Incident Management
Report, document, and notify authorities about serious incidents
Reporting a New Incident
- Navigate to Compliance → Incidents.
- Click Report incident.
Incident Form
Severity
| Level | Description | Effect |
|---|---|---|
| Critical | Data loss, discrimination, security breach | Affected agents are suspended automatically |
| High | Material malfunction, repeated wrong outputs | Notification to all responsible parties |
| Medium | Single error, no personal harm | Documentation for audit |
Required Fields
- Affected agent — Select from registered agents
- Description — What happened?
- Affected users — Estimated count
- Time of occurrence — When was the incident noticed?
- Immediate actions — What was done right away?
Workflow After Reporting
- Affected agents are automatically suspended (for Critical severity).
- All responsible parties (from the responsibility chain) are notified via a governance event.
- The incident appears in the Compliance Dashboard with status tracking.
Root-Cause Analysis & Corrective Actions
After the immediate response, add:
- Root-cause analysis — Why did it happen?
- Corrective actions — What is being changed to prevent recurrence?
- Authority notification — Has the supervisory authority been informed? (Art. 62, only for serious incidents)
Closing the Incident
Click Close incident once all actions are documented. The incident is archived as compliance evidence in the Evidence Package.