Vendor Risk Management

Automated Vendor Risk Assessments

Automatically Scope Vendor Risk Assessments and Score via Preferred Responses

Due diligence does not end with contracting, but must be sustained throughout the lifespan of the third-party vendor relationship. Periodic vendor risk assessments are necessary to ensure contract conformance and satisfy regulatory requirements.

But manual assessment management is prone to error, especially when dozens, or even hundreds, of third parties are involved. Spreadsheet-based questionnaires make it difficult to distribute relevant question sets to the appropriate vendors; distribution and completion records must be tracked by hand; and timelines may be easily missed by busy diligence teams facing multiple deadlines.

The Vendor Self-Assessment Status Report displays the current state of each vendor risk assessment.

Vendor Self-Assessments

Vendor Self-Assessment reports quickly identify problem areas that may require additional scrutiny.


ProcessUnity Vendor Risk Management automates vendor risk self-assessments with tools for:

Scheduling Alerts

ProcessUnity VRM pushes assessment notifications, in advance of approaching deadlines, to your assigned compliance team members and to third-party representatives.

Assembling and Distributing Questionnaires

Vendors receive only the questions that are relevant to them, and can complete their questionnaire through a cloud-based portal that assembles responses.

Tracking “Preferred Responses”

You set the preferred response, in line with your policies, for each question. The ProcessUnity dashboard flags responses in accordance with your expectations, assigning green, red or yellow codes for acceptable, unacceptable or questionable responses.

Monitoring Completion Status

You get real-time status updates regarding assessment completions; as deadlines approach, the system pushes alerts and escalation notifications to internal teams and vendors.