During the risk evaluation phase decisions have to be made concerning which risks need treatment and which do not, as well
as concerning on the treatment priorities. Analysts need to compare the level of risk determined during the analysis process
with risk criteria established in the Risk Management context (i.e. in the risk criteria identification stage). It is important
to note that in some cases the risk evaluation may lead to a decision to undertake further analysis.