Select Page

Get to know the features

Impact Assessor

Assess your service and adapt the level of security needed

The Impact Assessor is based on a smart questionnaire that ensures that any need for protecting confidentiality, integrity and availability is identified, and creates the foundation for the Vendapto generato to select the relevant security controls for the specific service.

Key benefits

  • Identifies business criticality from risk radar
  • Provides valuable input for Service Level Agreements (SLA)
  • Simple and easily understandable visualization of criticality in impact radar
Learn More

Before signing any supplier contract, identify if the delivered service is critical to your business. If not critical, you might want to simplify the security setup in order to save budgets and achieve agility, making the security team a valuable team player. In other situations a comprehensive security setup might be required in order to achieve high quality. When using the Vendapto Impact Assessor, the built-in algorithms automatically selects the relevant security controls based on your input.
Learn More

A control is a requirement of a regulation, standard, or policy. It defines how your suppliers must manage system configuration, organizational process, and people responsible for meeting a specific requirement of a regulation, standard, or policy.

The Vendapto control database is based on international standards and information security best-practices, but each control has been rewritten in order to eliminate misinterpretation and improve measurebility. The controls are updated regularly, and we ensure that new standards or revisions of existing ones are reflected when using Vendapto.

Control Generator 

Generate customized requirement documents for each supplier with one click

The Vendapto Control Generator automatically selects and tunes the relevant security controls for you. Using Vendaptos built-in database, the relevant security requirements are selected from a list of 1500+ security controls, and in case you need to edit or add your own text to a control, you can do this by using the control editor.

Key benefits

  • Ensures all relevant security requirements are part of your supplier contract
  • A time-consuming manual process can now be done in less that 10 minutes
  • Quick access to database based on multiple international standards and legislation such as NIST, ISO27002, HIPAA, PCI-DSS and GDPR.

Service Portfolio

Maintain a constant overview of your critical services and compliance reports.

Once the assessment is completed each service is saved in the Service Portfolio, providing a full overview of all services provided, ranked by criticality, type or supplier, as well as who has carried out assessment, conducted review and when this has taken place. In other words, you will have a complete overview and control of your services delivered, suppliers and agreed security controls.

Key benefits

  • Shared overview of all external services delivered to your company
  • Contains the impact assessment and agreed security controls for each individual service
  • Enables you to report on your supplier security
Learn More

Don’t forget the services already being delivered to you. Chances are you already have numerous services being delivered to your company by multiple suppliers. Upload any existing documentation to Vendapto, and simultaneously evaluate the business criticality of each service delivered. Once added to the Service Portfolio, you will be able to initiate and document compliance through Vendapto.
Learn More

Based on your input, the NDA Manager automatically generates the Non-Disclosure Agreements, ensuring that they are tailor-made for each specific project and situation. Once created, your supplier will sign and upload the NDA through Vendapto, ensuring that you always have a complete overview of all signed NDA’s. The optional notification functionality, ensures that your suppliers are reminded of the signed agreement, keeping your sensitive information secret years after the NDA is signed.

NDA Manager 

Keeping your company secrets safe

Vendapto’s Non-Disclosure Agreement (NDA) Manager automates and accelerates the process of requesting, generating, reviewing, approving, and tracking NDA agreements with suppliers and partners. The NDA Manager is a critical tool in protecting your company’s Intellectual Property and Technology.

 Key benefits

  • Making signing NDAs a fast and easy process for all parties
  • High quality and relevant NDAs generated for every supplier
  • Expiration tracking and reminders ensures NDAs are always valid

Compliance Manager

Get measurable compliance reports from your suppliers

Vendapto Compliance Manager simplifies the compliance processes by transforming each individual requirement schedule into a compliance questionnaire. You are reminded when it is time to carry out a compliance check for a given service – simply invite your supplier and they can fill in their answers resulting in a compliance report with measurable scores saved to your portfolio.

Key benefits

  • Enables you to assign, track, and record the compliance levels for each service and supplier
  • Provides a compliance score to help you track performance, progress and prioritize external audits
  • Produces detailed reports that document the compliance activities performed by each of your suppliers, which can be provided to auditors, regulators, and other compliance stakeholders.
Learn More

The Compliance Manager is a feature in Vendapto that helps you and your suppliers document compliance and handle any issues or suggestions for improvement. Using Vendapto improves the efficiency and quality of your compliance work, by eliminating the use of standardized excel questionnaires often requesting suppliers to verify compliance with multiple security measures not relevant or agreed on.
Learn More

Situations can occur where you want your supplier to comply with controls that are not already in our databases. For that, you can create and save you own unique security controls using the Control Library. The library is perfect for storing security specifications for customized hardware and applications where normal best practices might not be optimal.

Control Library

Create your own custom control library for your supplier contracts

The Control Manager is a library of your own custom requirements. Whenever you add a business-specific requirement to one of your supplier contracts, you can select to add it to you Control Library. These custom requirements will always be available to future contracts and can be added with a simple click.

Key benefits

  • A simple way to store your business-specific requirements
  • Ensuring that requirements are formulated the same way across all contracts
  • Share custom requirements with your colleagues

Want to see the entire solution?

Request Demo

This website uses cookies. By continuing to use this site, you accept our use of cookies.  Learn more