R1
Data breach through smart contract exploit
Technological
High
Severe
Regular audits, code reviews, penetration testing
CTO
R2
Regulatory non-compliance in new region
Legal
Medium
Compliance checks, legal consultation
Compliance Officer
R3
System downtime during token transfer
Operational Risk
Redundant systems, failover protocols
Technical Risk Lead
R4
Data breach exposing user credentials
Cybersecurity Risk
Zero Trust, encryption, penetration testing
Security Team
R5
Non-compliance with GDPR/CCPA
Compliance Risk
Regular audits, data subject rights workflows
R6
Third-party data mishandling
Vendor Risk
Vendor assessments, contractual controls
Legal Advisor
R7
AI bias in property valuation algorithms
AI Ethics/Bias Risk
Low
Model validation, ethics board review
AI Governance Lead
R8
Insider threats
Role-based access, logging, monitoring
R9
DDoS attack on platform
Web Application Firewall, rate limiting
R10
Regulatory changes (e.g., new AI laws)
Monitoring, legal consultation
Last updated 8 months ago