← Trust Center
SUPPLY CHAIN
Managing
third-party risk
Managing third-party risk
The vendors and subprocessors we rely on are held to standards equivalent to our own, with diligence before and monitoring after engagement.
Due diligence
Security, privacy, and reliability reviews before we onboard a vendor.
Contractual controls
Data-protection terms and security obligations are required by contract.
Ongoing monitoring
We reassess vendors on a risk-based cadence and on material change.