opexxx · October 21, 2021 08:34
diff --git a/TPRM.txt b/TPRM.txt
 Question 1 – Sourcing and fair selection process

 Provide documentation describing your company’s sourcing/fair selection process; or
 Include detailed description of the process including:
 a. Key evaluation components,
 b. Stakeholders involved in the process,
 c. Way in which the results are documented.
 NOTE: If answered ‘Yes’, Question 1 requires a mandatory attachment. In case no official sourcing/fair selection procedure document is available, please attach detailed process description in a doc/pdf file.


 Question 2 – Third party pre-contract risk assessment / due diligence process

 Provide overview of your company’s Pre-Contract Due Diligence process;
 List all risk areas that are assessed, e.g.:
 a. Information Security,
 b. Privacy,
 c. Business Continuity,
 d. HR Security,
 e. Compliance,
 f. Risk Management,
 g. Physical Security,
 h. Financial Viability,
 i. Operational Competency,
 j. Anti-Money Laundering,
 k. Anti-Fraud,
 l. Sanctions,
 m. Country,
 n. Legal/Reputational.


 Question 3 – Third party ongoing monitoring process

 Provide an overview of your company’s Third Party Ongoing Monitoring process including:
 a. Activities in scope,
 b. Risk review frequency,
 c. Performance review frequency.


 Question 4 – Third party issue management process

 Provide process description including:
 a. Issue identification,
 b. Client notification,
 c. Management,
 d. Tracking,
 e. Resolution.


 Question 5 – Third party termination process

 Provide process description including:
 a. List of standard activities,
 b. Stakeholders responsible for execution,
 c. Way in which the completed activities are documented.
	Question 1 – Sourcing and fair selection process

	Provide documentation describing your company’s sourcing/fair selection process; or
	Include detailed description of the process including:
	a. Key evaluation components,
	b. Stakeholders involved in the process,
	c. Way in which the results are documented.
	NOTE: If answered ‘Yes’, Question 1 requires a mandatory attachment. In case no official sourcing/fair selection procedure document is available, please attach detailed process description in a doc/pdf file.


	Question 2 – Third party pre-contract risk assessment / due diligence process

	Provide overview of your company’s Pre-Contract Due Diligence process;
	List all risk areas that are assessed, e.g.:
	a. Information Security,
	b. Privacy,
	c. Business Continuity,
	d. HR Security,
	e. Compliance,
	f. Risk Management,
	g. Physical Security,
	h. Financial Viability,
	i. Operational Competency,
	j. Anti-Money Laundering,
	k. Anti-Fraud,
	l. Sanctions,
	m. Country,
	n. Legal/Reputational.


	Question 3 – Third party ongoing monitoring process

	Provide an overview of your company’s Third Party Ongoing Monitoring process including:
	a. Activities in scope,
	b. Risk review frequency,
	c. Performance review frequency.


	Question 4 – Third party issue management process

	Provide process description including:
	a. Issue identification,
	b. Client notification,
	c. Management,
	d. Tracking,
	e. Resolution.


	Question 5 – Third party termination process

	Provide process description including:
	a. List of standard activities,
	b. Stakeholders responsible for execution,
	c. Way in which the completed activities are documented.