TrustArc Vendor Risk Management

Manage Vendors to Comply with CCPA, GDPR and other Privacy Regulations.

Risks related to vendors are of growing concern particularly when it comes to data privacy. International and U.S. privacy laws and regulations like CCPA, GDPR and HIPAA have specific provisions that address vendors and extend companies' data privacy obligations throughout their supply chains. In addition, Forrester research found that third-party attack or incident caused 21% of confirmed security breaches in 2018.1

Effective vendor management and risk mitigation are essential to support compliance and to avoid potential data breaches and consequences of non-compliance (i.e., fines, brand damage, loss of customer trust, etc.)

TrustArc Vendor Risk Management Solution

The TrustArc Vendor Risk Management solution provides a centralized place and method to collect, maintain and track critical data for ongoing vendor management. The solution enables companies to assess vendors, evaluate and monitor vendor risk, track ongoing vendor status and report on key compliance metrics. The solution includes:

Privacy Platform

Data Flow Manager to inventory, track and collect information on your vendors;

Assessment Manager to assess vendor risk and status, manage workflow and tasks and conduct ongoing monitoring of vendors.

Privacy Platform
Assessment

Created by TrustArc privacy experts and completed by your vendors in Assessment Manager, this customizable assessment helps you document critical vendor information and assess vendor risk and includes question logic, gap analysis and remediation recommendations.

Assessment
Consulting

TrustArc privacy consultants can help you understand your regulatory environment and risks; design your vendor management program; define your risk scoring model and vendor prioritization; and develop policies and procedures.

Consulting

TrustArc Vendor Risk Management Solution Features


Powerful Technology

Data Flow Manager and Assessment Manager are part of the TrustArc Privacy Platform and allow you to track, assess, evaluate and monitor vendors.

Powerful Technology

Vendor Assessment

Includes a customizable, robust vendor assessment developed by TrustArc privacy experts that helps you evaluate your vendors and determine risk level.

Vendor Assessment

Deep Privacy Expertise

Our experienced privacy consultants can help you understand your risk environment, design your vendor management program, develop policies and procedures and more.

Deep Privacy Expertise

Easy to Use

Allows you to streamline vendor management efforts, quickly send assessments to vendors and provide vendors with an easy to use system to complete assessments.

Easy to Use

[1] The State Of Data Security And Privacy: 2018 To 2019. Forrester. December 2018

Learn more about the TrustArc Vendor Risk Management Solution


Resources