Every vendor relationship and vendor agreement is different, even with what appears to be the same services, SLAs (service level agreements), etc. The regulators are more than likely familiar with the vendors, but it is their job to ensure that you know what you are doing and that you are complying with their guidance and making sure that whatever version of the vendor’s services were agreed to are being complied with and that your executive team and board truly know and understand the risks of the services the vendor is providing, and if you are conducting proper and timely due diligence during the life of the vendor relationship. Just because something looks like it is the same flavor on the outside, you may not know what is going on financially with a vendor or what may be going on with their executives or their internal control environment and these are critical things that you should be monitoring and reporting on.
------------------------------------
Learn more about Maureen Carollo’s Vendor Due Diligence & FinTechs webinar.