The Products page shows you what Products are in use at your organization.
How is the Products Table populated?
It's populated in 4 different ways (3 automatic, 1 manual):
Adding a Contract
Launching a Workflow
Connecting an Integration
Manually Adding a Product
Choose from a Product in Vendr's Catalog
Or create a Custom Product
Manually Add a Product
Choose from a Product in Vendr's Catalog
Click on System of Record on the lefthand side of the page, then click on Products
Click Add Product
Type in the name of the product, then select it from the list of Products in Vendr's Catalog.
Create a Custom Product
If the Product doesn't exist in the catalog (eg., non-SaaS), click Add New Product "[Product Name]" to create a Custom Product.
Input the requested information of Supplier Name, Product Name and Product Type (Product URL and Description are optional), then click Add Product
When you click into a specific Product, you can see a number of details, organized across 4 tabs:
Active Users (Last 12 Months)
This is how many unique users have logged-into this application over the past 12 months (rolling 12 months, not calendar year). This number is pulled from any IdP/SSO Integrations you have connected to your Vendr account.
You can find more detail about those users by clicking the Users tab at the top of the details page.
This is the company that makes this Product. You can click on the Supplier for more detail.
This is a quick blurb about the Product, with links to its website.
These are people in your organization responsible for this Product. You can edit Stakeholders on the Properties tab.
This section shows the statuses of certain compliance standards for the Product.
Each standard has a date, which is the last time that standard was verified by us.
Definitions of each standard:
DPA Available: The Data Protection Amendment gives individuals the right of access to information about themselves which is held by an organization, and sets out how personal information should be collected, stored and processed.
SOC2 Attestation: Service Organization Control 2, reports on various organizational controls related to security, availability, processing integrity, confidentiality or privacy.
Annual Penetration Tests: An assessment process conducted once a year to identify and remediate security vulnerabilities in a computer system or network to improve overall security.
Data Privacy Compliant: Adherence to legal and regulatory requirements related to data protection, privacy, and security.
MFA Available: Multi-Factor Authentication (MFA) is a security feature that requires users to provide two or more forms of authentication before accessing an account or system, which is available in the system being discussed.
GDPR Compliant: The General Data Protection Regulation (GDPR) is legislation that updated and unified data privacy laws across the European Union (EU).
ISO27000 Series: Is an information security standard created by the International Organization for Standardization (ISO), which provides a framework and guidelines for establishing, implementing and managing an information security management system (ISMS).
Handles/Stores PII: The system manages, processes, and stores Personally Identifiable Information (PII) which is sensitive data that can be used to identify, locate or contact an individual.
SSO Available: Single Sign On (SSO) allows a user to authenticate in a system and gain access to another system by providing proof of their authentication.
These are actually verified by a human, not just some bot scraping websites.
Also, while we've verified this data as of the date shown, you should always double check on that product's website for the most current information.
For example, if you're doing a security audit in October and our Compliance data is dated as last verified in April, then it's entirely possible that the product's SOC2 is out of date, or they've updated their documentation, etc.
These are pieces of metadata in our SaaS Codex that we use to power various reports (eg., Overlapping Products).
If you have any of the Identity Provider & SSO integrations connected, you'll be able to see who in your organization is logging into this Product via that integration.
These are different pieces of data you can track, as well as use to sort and filter your views on the main Products table.
You can also create Custom Properties, if you'd like.
This is an audit log of what's happened with this Product in your Vendr account.