Third Party Supplier Security and Compliance Requirements

In order to onboard a new service or to introduce a change of use to a service please request that the supplier complete the following documentation.

The DPIA screening questions must be completed by the University project manager or activity owner and attached to the IT Services ticket along with the above listed documentation.

Once these documents have been completed by the supplier please log a call with IT Services for a Service Compliance Check attaching the documentation.

These documents will then be reviewed by IT Security and Compliance to ensure that the appropriate due diligence has been completed.  

No services will be implemented without this process being followed.