--- title: Issues & Tasks | Clarative description: Issues track vendor compliance gaps found during assessments. Tasks are follow-up work items created to resolve or monitor those issues. --- ## What is an Issue? An **Issue** is automatically created when a reviewer marks an assessment criterion as **Issue Detected** during the assessment review. It represents a compliance gap or risk finding tied to a specific vendor and criterion. Each issue includes: - **Title** — The name of the criterion that failed - **Severity** — High, Medium, or Low, set by the reviewer - **Status** — Open, Mitigated, Accepted, or Closed - **Vendor** — The vendor the issue is associated with - **Tasks** — Any follow-up work items linked to this issue - **Comment** — Optional context added by the reviewer during assessment Issues are visible in the **Issues** tab in Vendor Assessments, and can be searched and exported. --- ## What is a Task? A **Task** is a follow-up work item created from an Issue to track remediation or ongoing monitoring. Tasks give your team a structured way to assign, track, and close out the work needed to address a compliance gap. Each task includes: - **Name** — A short label for the work item - **Description** — Optional context or instructions - **Owner** — The person responsible for completing the task - **Due Date** — A target completion date - **Status** — Open or Closed - **Activity feed** — A comment thread for logging progress, communications, or updates Tasks are visible in the **Tasks** tab in Vendor Assessments, filterable by owner, and can be exported. --- ## Issue Lifecycle Issues follow a straightforward lifecycle from detection to resolution: 1. **Assessment review** — A reviewer marks a criterion as **Issue Detected** and sets a severity 2. **Issue created** — The issue is automatically created when the assessment is finalized 3. **Tasks created** — Team members create tasks to track the remediation work 4. **Resolved** — The issue is closed via one of the resolution actions below --- ## Issue Actions From an issue’s detail page, you can take one of three resolution actions: - **Mark as Mitigated** — The risk has been addressed. This may mean the vendor implemented a fix, or that your organization put a compensating control in place internally. - **Accept Risk** — Your organization acknowledges the compliance gap and has decided to accept it without further remediation. - **Close Issue** — The issue is no longer relevant or applicable (e.g., the vendor relationship ended, or the criterion no longer applies to the use case). --- ## Need Help? Contact support at ****.