Mandatory input

At the initial setup stage, users will see two configurable options that include links for selecting inputs required during vendor onboarding — the Privacy Policy link and the Terms and Conditions link.

Administrators can choose whether to make these policy links mandatory or optional during the onboarding process. This flexibility ensures compatibility with vendors who may not have one or both of these policies available, allowing users to tailor the onboarding requirements as needed.

During the vendor onboarding process, organizations can configure which documents are mandatory for a vendor to submit. As illustrated in the image below, users can select the required documents according to their internal compliance policies.

For example, certain organizations may mandate submission of a SOC 2 Report and a VAPT Report before proceeding with vendor onboarding. Other documents, such as a PCI DSS Report, can be kept optional, as they may only apply to specific sectors like financial services or payment processors.

This flexibility allows each organization to tailor document requirements based on its unique risk and compliance needs.