Who has permissions to create and edit vendors within the platform?
- Create and manage shared vendors at the account (Service Provider) level: Only Service Provider Admin users.
- Manage local vendors relevant to a specific sub-account and linked share vendor at the sub-account level: Company Admins users + Service Provider Admin users.
- Sub-account Editors have full capabilities within the sub-account except for creating new vendors.
- Vendor Assessors (External):
- Invited via email to complete the Security Assessment questionnaire.
- Work within a restricted interface with no visibility into overall risk or vendor context.
- Can upload evidence per question and save progress.
- Only one assessor may edit at a time (internal users may view concurrently).