Skip to main content

Add New Vendor

Create a new vendor resource in the account.

Basic Parameters

ParameterDescription
CategoryThe type of vendor.
CriticalDoes this vendor is considered as critical.
Data StoredWhat type of data the vendor stores.
Has PiiDoes this vendor store any type of PII.
Is Compliance Review RequiredIs vendor compliance report review required?
Is Sub ProcessorDoes this vendor is considered as sub-processor.
Is Sub Processor ActiveDoes this subprocessor is active.
NameThe name of a vendor.
Password Mfa EnabledIs mult-factor authentication enabled for this vendor.
Password PolicyThe vendor password policy.
Password Requires Min LengthIs there a minimum length for user passwords.
Password Requires NumberDoes a password require numbers.
Password Requires SymbolDoes a password require non-alpha-numeric characters.
RiskThe level of risk for customer data.
Services ProvidedDescribe vendor services.
URLVendor URL.
User IDThe user ID of the person responsible for the compliance of this vendor.

Advanced Parameters

ParameterDescription
ConfirmedIs all vendor data confirmed?
Contact At VendorThe name of the corresponding account manager for this vendor.
Contacts EmailThe email of the corresponding account manager for this vendor.
Password Min LengthMinimum character length for a password.
Renewal DateVendor renewal date.
Renewal Schedule TypeVendor renewal schedule type.

Example Output

{
"archivedAt": "Timestap when the status of the vendor changed",
"category": "ENGINEERING",
"confirmedAt": "Fri Jul 14 2023",
"contactAtVendor": "John Doe",
"contactsEmail": "jdoe@company.com",
"createdAt": "2020-07-06 12:00:00.000000",
"critical": false,
"dataStored": "resulting reports of security scans",
"documents": [
{
"createdAt": "2020-07-06 12:00:00.000000",
"fileUrl": "http://localhost:5000/download/vendors/1",
"id": 1,
"name": "AWS SOC 2 2018",
"updatedAt": "2020-07-06 12:00:00.000000"
}
],
"hasPii": true,
"id": 1,
"isComplianceReviewRequired": false,
"isSubProcessor": false,
"isSubProcessorActive": false,
"lastQuestionnaire": {},
"location": "USA",
"logoUrl": "https://cdn-prod.imgpilot.com/logo.png",
"name": "Acme",
"notes": "Meeting once a month to adjust contract",
"passwordMfaEnabled": true,
"passwordMinLength": 8,
"passwordPolicy": "USERNAME_PASSWORD",
"passwordRequiresMinLength": true,
"passwordRequiresNumber": true,
"passwordRequiresSymbol": true,
"privacyUrl": "https://acme.com/privacy",
"renewalDate": "2023-07-14",
"renewalDateStatus": "COMPLETED",
"renewalScheduleType": "ONE_YEAR",
"reviews": [
{
"cpaFirm": "CPA firm name",
"cpaProcedurePerformed": "The following procedures were performed...",
"encompassBusinessNeeds": true,
"findings": [
{
"description": "Finding 1",
"id": 1
}
],
"followUpActivity": "User must proceed to...",
"hasMaterialImpact": true,
"id": 1,
"locations": [
{
"city": "San Diego",
"id": 1,
"stateCountry": "CA"
}
],
"reportIssueDate": "2023-07-14",
"reportOpinion": "UNQUALIFIED",
"reviewDate": "2023-07-14",
"reviewer": "John Doe",
"services": [
{
"id": 1,
"name": "Service 1"
}
],
"socReport": "SOC_1",
"socReportType1": true,
"socReportType2": true,
"socType1EndDate": "2023-07-14",
"socType1StartDate": "2023-07-14",
"socType2EndDate": "2023-07-14",
"socType2StartDate": "2023-07-14",
"subserviceOrganization": "Subservice Inc.",
"subserviceOrganizationProcedurePerformed": "The following procedures were performed...",
"subserviceOrganizationUsingInclusiveMethod": true,
"trustServiceCategories": [
{
"category": "AVAILABILITY",
"id": 1
}
],
"updatedAt": "2023-07-14",
"userControls": [
{
"id": 1,
"inPlace": true,
"name": "End User Control 1"
}
]
}
],
"risk": "MODERATE",
"servicesProvided": "Perform security scans once a month",
"termsUrl": "https://acme.com/terms",
"updatedAt": "2020-07-06 12:00:00.000000",
"url": "https://acme.com",
"user": {
"avatarUrl": "https://cdn-prod.imgpilot.com/avatar.png",
"backgroundChecks": [
{
"caseId": "abc123",
"caseInvitationId": "abc123",
"createdAt": "2020-07-06 12:00:00.000000",
"id": 1,
"invitationEmail": "email@email.com",
"linkedAt": "2020-07-06 12:00:00.000000",
"manualCheckDate": "2020-07-06",
"manuallyCheckUrl": "url.com",
"outOfScopeAt": "2020-07-06 12:00:00.000000",
"outOfScopeReason": "abc123",
"reportData": "The background check report data",
"source": "DRATA",
"status": "OK",
"type": "CERTN",
"updatedAt": "2020-07-06 12:00:00.000000",
"url": "https://app-stage.karmacheck.com/background_check/aaaaaaaa-bbbb-0000-cccc-dddddddddddd",
"userId": 1
}
],
"createdAt": "2020-07-06 12:00:00.000000",
"drataTermsAgreedAt": "2020-07-06 12:00:00.000000",
"email": "email@email.com",
"firstName": "Sally",
"id": 1,
"identities": [
{
"connectedAt": "2020-07-06 12:00:00.000000",
"connection": {
"accountId": "The related accound id to that connection",
"aliasUpdatedAt": "2020-07-06 12:00:00.000000",
"assignmentId": "FLk12AsS",
"authorized": true,
"clientAlias": "My-connection-alias-1",
"clientId": "drata.com",
"clientType": "GOOGLE",
"code": "ACCOUNT_ADMIN_DISABLED",
"companyId": "12341234",
"connected": false,
"connectedAt": "2020-07-06 12:00:00.000000",
"deletedAt": "2020-07-06 12:00:00.000000",
"failedAt": "2020-07-06 12:00:00.000000",
"groupLabel": "Everyone",
"id": "1",
"jqlQuery": "project = IT AND type = \"Offboarding\"",
"key": "johnsmith@admin.com",
"manuallyUpdatedAt": "2020-07-06 12:00:00.000000",
"product": "",
"providerTypes": [
5
],
"requestorId": "328d3016-71f3-4485-af20-06ce8044da18",
"securityLabel": "Jira Security Label",
"sourcePreference": "LABEL",
"state": "ACTIVE",
"workspaces": [
{
"description": "Platform to track SOC 2 compliance within the organization",
"howItWorks": null,
"id": 1,
"logo": "https://cdn.drata.com/icon/icon_fwhite_bblue_256.png",
"name": "Drata",
"primary": true,
"url": "https://app.drata.com"
}
],
"writeAccessEnabled": false
},
"disconnectedAt": "2020-07-06 12:00:00.000000",
"hasIdp": true,
"hasMfa": true,
"id": 1,
"identityId": "1a2b3c",
"username": "Username"
}
],
"jobTitle": "CEO",
"lastName": "Smith",
"roles": [
"ROLE",
"ANOTHER_ROLE"
],
"updatedAt": "2020-07-06 12:00:00.000000"
}
}

Workflow Library Example

Add New Vendor with Drata and Send Results Via Email

Workflow LibraryPreview this Workflow on desktop