Humanitarian situation monitoring has undergone a significant methodological evolution over the past decade, driven by the growing scale and complexity of global crises. As of October 2025, Protection Clusters estimate that 395 million people across 23 countries are exposed to protection risks — direct threats to life from violence, coercion, and deliberate deprivation. Of these, 168 million are assessed as in need of protection assistance, yet the response architecture remains critically underfunded and analytically fragmented.
The Global Protection Cluster's Protection Analytical Framework (PAF), introduced in 2021 and continuously refined, represents the most comprehensive interagency effort to standardise how protection risks are identified, measured, and monitored. It provides the analytical backbone for both country-level Protection Analysis Updates and the quarterly Global Protection Updates. PRISM — the Protection, Risk & Impact Severity Monitor — builds on these foundations by integrating 50+ authoritative datasets covering 1.5 million datapoints across 200+ countries, translating the PAF's conceptual logic into a unified, data-driven analytical platform.
This deep dive examines the methodological architecture behind humanitarian situation monitoring: the PAF's four-pillar analytical structure, the 15 standardised protection risk categories, PRISM's severity scoring formulas, and the indicators and parameters required for effective humanitarian intervention. It maps how global monitoring frameworks translate into actionable data — and where the gaps remain.
The Protection Analytical Framework: Four Pillars for Risk Identification
The PAF, endorsed by the Global Protection Cluster and its Areas of Responsibility, provides a common approach to organise data and information for context-specific protection analysis. Its core logic rests on the protection risk equation — the interplay of threat, vulnerability, and capacity that jointly determines the scale and severity of protection risks. The framework guides analysts through four interconnected pillars, each containing three sub-pillars and a set of analytical questions.
The framework is explicitly not prescriptive. It provides a guiding structure for collaborative reflection and participatory design of action, adaptable to community, area, country, or cross-border analysis. The PAF Analysis Plan supplies macro-analytical and granular questions under each pillar; the PAF Concepts Matrix helps explore data for identifying threats, vulnerabilities, and capacities; and the PAF Analysis Workflow defines the steps for conducting a complete protection analysis cycle.
A critical feature of the PAF is its insistence on intersectional analysis. Vulnerability is not treated as a fixed criterion attached to specific population categories. Instead, the framework recognises that forms of oppression — racism, sexism, ableism — overlap and define unique social groups. This intersectional lens moves analysis beyond assumptions about pre-determined vulnerable groups toward evidence-based identification of who faces compounded risks.
The 15 Standard Protection Risks: A Global Monitoring Framework
The GPC, together with its Areas of Responsibility (Child Protection, Gender-Based Violence, Mine Action, and Housing, Land & Property), developed a consolidated list of 15 standardised protection risks on the basis of the PAF. These categories are formally used in Global Protection Updates, Protection Analysis Updates, advocacy briefs, and donor engagements — providing a consistent analytical language across all operations.
Each risk category is monitored on a severity scale of 1 to 5 (minor to extreme), assessed through a combination of value-judgement elicitation from subnational experts and convergence of evidence across five variables: geographic impact, occurrence rate, accumulated cases, state involvement, and group targeting. The severity criteria, developed jointly by the GPC and Global Areas of Responsibility, guide rather than dictate — they do not provide specific metrics but frame the evidence-based judgement process.
| # | Protection Risk Category | PRISM Weight | Prevalence |
|---|---|---|---|
| 01 | Abduction, kidnapping, enforced disappearance, arbitrary arrest/detention | 2.0× | High |
| 02 | Attacks on civilians and other unlawful killings, attacks on civilian objects | 3.0× | 100% ops |
| 03 | Child and forced family separation | 2.0× | Moderate |
| 04 | Child, early or forced marriage | 2.0× | Moderate |
| 05 | Discrimination, stigmatisation, denial of resources/services/access | 1.5× | 100% ops |
| 06 | Disinformation and denial of access to information | 1.5× | Moderate |
| 07 | Forced recruitment and association of children in armed forces/groups | 2.0× | High |
| 08 | Gender-based violence | 3.0× | 100% ops |
| 09 | Impediments to access legal identity, remedies and justice | 1.5× | 100% ops |
| 10 | Presence of mines and other explosive ordnance | 2.5× | Moderate |
| 11 | Psychological/emotional abuse or inflicted distress | 2.0× | 100% ops |
| 12 | Theft, extortion, forced eviction or destruction of property | 1.5× | Moderate |
| 13 | Torture or cruel, inhuman, degrading treatment or punishment | 3.0× | High |
| 14 | Trafficking in persons, forced labour or slavery-like practices | 2.0× | Moderate |
| 15 | Unlawful restrictions to freedom of movement, siege, forced displacement | 2.5× | 100% ops |
Sources: GPC Protection Risks Explanatory Note; PRISM Protection Severity Monitor weighting schema; GPC Global Protection Update, October 2025.
Protection Risk Severity Across Operations
The October 2025 Global Protection Update provides a stark picture. Across 23 countries with active Protection Clusters, the convergence of overlapping risks — attacks on civilians, abductions, movement restrictions alongside GBV, service denial, lack of legal identity, and psychosocial distress — has created what the GPC describes as an "unprecedented global protection crisis." Five operations face the most extreme conditions: DRC, Myanmar, occupied Palestinian territory, Sudan, and Ukraine.
From Framework to Platform: How PRISM Operationalises the PAF
PRISM translates the PAF's conceptual architecture into a quantitative, multi-source analytics platform. Where the PAF provides analytical questions and organising logic, PRISM provides the data infrastructure — integrating 50+ datasets from ACAPS, OCHA FTS, IPC, ACLED, EM-DAT, Eurostat, UNHCR, OECD DAC, and others into a unified scoring framework across 200+ countries.
The platform's analytical engine maps directly onto the PAF's pillars. Context is captured through INFORM Risk Index scores, ACLED conflict indices, and climate vulnerability profiling. Threats are monitored via ACAPS protection risk incidents across all 15 GPC categories, with 7,370+ events logged and coded. Effects are measured through IPC food security classifications, HPC People in Need figures, and displacement indicators. Capacities are assessed through funding gap analysis, humanitarian access scores, and localisation metrics.
Crisis Severity Score (0–10)
PRISM computes a composite crisis severity score for each of 74 humanitarian operations, using a weighted formula that synthesises five normalised indicators:
- People in Need (30%) — HPC HNO 2025 figures normalised against population size, capturing the scale of humanitarian need.
- IPC Phase 4+ (25%) — Population in emergency or famine food insecurity phases, a proxy for acute survival-level deprivation.
- Conflict Intensity (20%) — ACLED conflict index scores reflecting the intensity and spread of armed violence.
- Protection Risk (15%) — Weighted ACAPS protection risk incident scores, where attacks on civilians, GBV, and torture carry 3× multipliers.
- Funding Gap (10%) — The differential between FTS requirements and contributions, indicating response capacity shortfall.
Protection Risk Weighting: Not All Violations Are Equal
PRISM's Protection Severity Monitor applies differential weighting to the 15 risk categories, reflecting the severity and immediacy of different forms of violence, coercion, and deprivation. This weighting schema directly informs the protection component of the crisis severity score and the country-level protection risk matrices displayed across 74 country profiles.
The rationale is grounded in the GPC's own severity criteria: risks that involve direct, immediate threats to life and physical integrity — attacks on civilians, gender-based violence, torture — receive the highest multipliers. Risks that create structural barriers to safety but operate through institutional or systemic channels — discrimination, impediments to justice, disinformation — receive lower but still elevated weights.
The Protection Funding Cliff: A Systemic Failure to Respond
The gap between identified protection needs and funded response has widened into a chasm. In 2024, the Global Protection Cluster received $1.7 billion against a $3.5 billion requirement — a 51% shortfall. Projections for 2025 are worse: with US foreign aid cuts, European austerity measures, and the "humanitarian reset" reshaping OCHA priorities, projected shortfalls average 67% across major crises, with some operations facing potential gaps of 86%.
As of August 2025, the Protection Cluster is funded at just 23% of its initial $3.2 billion request. The GPC identified 24.7 million people as most urgently in need through hyper-prioritised response plans — yet this represents just 14.7% of the 168 million people in need of protection globally, leaving 143.3 million people unassisted.
Indicators and Parameters for Humanitarian Intervention Monitoring
Effective humanitarian situation monitoring requires triangulating data across multiple dimensions. PRISM's architecture maps the PAF's analytical logic into six thematic modules, each drawing on distinct authoritative sources. The table below summarises the core indicators tracked, their data sources, update frequencies, and how they map to the PAF's four pillars.
| PAF Pillar | PRISM Module | Key Indicators | Source | Records |
|---|---|---|---|---|
| Context | Crisis & Risk | INFORM Risk Index, INFORM Severity, Humanitarian Access Index | ACAPS, DRMKC | 191 countries |
| Context | Climate & Disasters | Disaster events, real-time alerts, rainfall anomalies, food security hotspots | EM-DAT, GDACS, HDX, ASAP | 142K+ |
| Threats | Protection & Conflict | Protection risk incidents (15 categories), conflict events, political violence | ACAPS, ACLED | 10K+ |
| Effects | Crisis & Risk | IPC food security phases, People in Need, displacement indicators | IPC, HPC HNO, UNHCR | 318K+ |
| Effects | Migration | Asylum applications, enforcement pipeline, sea arrivals, displacement flows | Eurostat, UNHCR | 262K+ |
| Capacities | Funding & Allocation | Funding requirements/contributions, ODA flows, CBPF allocations, CERF | OCHA FTS, OECD DAC | $212B+ |
| Capacities | Localisation | Grand Bargain commitments, LNA funding, NGO pooled funds, initiatives | IASC, ICVA | 168 records |
The Monitoring Cycle: From Data Collection to Decision-Making
PRISM's monitoring methodology follows a structured cycle that mirrors the PAF's analysis workflow. Data is ingested from 50+ sources through dedicated processors — automated refresh scripts for ACAPS, OCHA FTS, HDX, Eurostat, and OECD data — then normalised, scored, and aggregated into the platform's analytical outputs. The entire data pipeline processes 1.5 million+ datapoints across 120+ API endpoints.
The ACAPS protection risk monitoring methodology is particularly instructive. Data collectors gather information daily from over 100 publicly available reports — UN agency publications, media, government sources, NGO reporting. Each event is logged with geographic coverage, affected population, and risk category. Events undergo review for completeness, validity, and reliability before entering the dataset. When a source contains information relevant to multiple risks, separate entries are made for each — ensuring granular, risk-specific analysis.
At the country level, Protection Clusters convene at least quarterly with Areas of Responsibility, key operational partners, and relevant stakeholders to undertake collective analysis. They assess the severity of each of the 15 standard protection risks through a combination of independent expert surveys at subnational level (value-judgement elicitation) and convergence of evidence. This produces the Protection Analysis Updates — identifying the 5 most critical protection risks per operation — which feed into the GPC's quarterly Global Protection Updates and inform the Humanitarian Programme Cycle.
Extreme Severity: The Five Most Critical Protection Crises
The October 2025 Global Protection Update identifies five operations where populations experience overlapping patterns of violence, exclusion, and deprivation at extreme levels. In these contexts, the PAF's risk equation operates at maximum: threats are pervasive and systematic, vulnerability factors compound across age, gender, and displacement status, and response capacity is collapsing under funding and access constraints.
| Operation | Key Protection Risks | Scale | Funding Gap |
|---|---|---|---|
| 🇸🇩 Sudan | Attacks on civilians (air/drone strikes), GBV, forced recruitment of children, enforced disappearance | ~25M displaced | >80% |
| 🇨🇩 DRC | Violence in N/S Kivu, child recruitment, forced displacement, sexual violence | 6.4M IDPs | >70% |
| 🇵🇸 oPt (Gaza) | Famine, attacks on civilian infrastructure, siege, forced displacement, collective punishment | 2.3M affected | >75% |
| 🇲🇲 Myanmar | Conflict escalation, attacks on civilians, mines/ERW, forced displacement, earthquake impact | 3.4M displaced | >65% |
| 🇺🇦 Ukraine | Attacks on civilian infrastructure, mines/ERW, forced displacement, psychosocial distress | 14.6M in need | >50% |
Strengthening Humanitarian Situation Monitoring: Recommendations
The gap between the sophistication of monitoring frameworks and the political will to act on their findings defines the central paradox of contemporary protection practice. The data architecture exists — from the PAF's analytical logic to PRISM's integrated datasets. The challenge is ensuring this evidence translates into funded, timely, and accountable protection responses.