Understanding risk treatment
Each risk carries a treatment decision: reduce, accept, transfer, avoid, or monitor. Accepting a risk requires a non-empty acceptance note explaining why. The status follows the decision: accept → accepted, monitor → monitored, reduce / transfer / avoid → treating.
On the risk detail page, use the Update treatment form to change the decision. When you select Accept, a required Acceptance note field appears. Save to apply.
A formal treatment decision is what makes a risk register a register and not a list of worries. Acceptance with a recorded rationale (rather than silent ignore) is the defensible move when treatment is impractical.
Accepted risks are kept inside the Risk Register MVP with their notes. The formal Exception / Acceptance Register is a later phase; when it ships, accepted risks will be migrated into structured exceptions with approver, expiry, and compensating controls.
