Before any organization can do business with an external vendor, it needs to examine its data privacy protocol against new legal requirements. Recent legislations like General Data Protection Regulation (GDPR) in the EU and the California Consumer Privacy Act (CCPA) in the U.S. has cast a spotlight on the handling of consumer data, especially the way it is shared among third parties. Organizations of all sizes in every industry are upgrading the vetting processes to make sure that new vendors don’t bring additional risks.
These risk assessment processes contain several moving parts, and a mistake at any point along the way can jeopardize the result. The easiest way to pinpoint the holes in your organization's vendor vetting workflow is to review the entire process from beginning to end and examine the opportunities for data privacy lapses. Here are four common pitfalls to look for:
1. Overlooking Contract-level Details
Amid all the changes happening to the regulatory landscape, it’s easy to overlook errors in the language of your contracts. In a short window of time, contract language—on old and new agreements—needs to be updated to provide consumers with new legal protections and redefine business-to-business relationships with any party that touches consumer data. If contracts are being negotiated in that window, some terms might slip through the cracks and expose you to new risks.
At the SIG Procurement Technology Summit, attendees will experience the latest procurement technology in a virtual Innovation Hall. These companies are using artificial intelligence, machine learning and robotic process automation to elevate the role of procurement, ignite innovation and impact the world.
Featured here are company overview, solution overview, and company approach and process to help you learn more about the following virtual Innovation Hall technology providers:
What is your role and your day-to-day responsibilities?
As CEO of a software SaaS company, I spend time with my leadership team focusing on the product and obsessing over the problems we're trying to solve for our customers. I focus on making sure all of our teams – internal product management, sales, engineering and customer support – are functioning at optimal levels. I also enjoy spending time with our customers, hearing about their pain points and how they're actually using the software we've built.
What is something that you wish more people knew about sourcing and procurement?
Sourcing isn't just about finding the right vendor or supplier, it's about understanding the problems business stakeholders are trying to solve. Very often I see teams obsess over the solution, its features and price, rather than focusing on the problem the stakeholder is experiencing. The best sourcing and procurement teams I've worked with are strategic in their approach and never lose sight of the pain points stakeholders have throughout the sourcing process.
Jai Chinnakonda, co-founder of a provider technology start-up, enrolled in SIG University's Certified Third Party Risk Management Professional (C3PRMP) program to learn how he can better serve his clients by gaining a more thorough understanding of third-party risk management best practices.
In the C3PRMP program, students focus on best and emerging practices to identify, assess, manage and control third-party risk throughout the lifecycle of relationships, and learn how to align risk fundamentals and frameworks with risk culture to develop the essential tools and controls for effective governance.
The digital age is seeing an increased dependence on third-party service providers of varying sizes – including start-ups – to meet the challenges of technological innovation, cost, demand for service excellence and heightened competition.
Organizations are often locked in a love-hate relationship with their vendors as they struggle to meet expectations, sometimes both ways. In today’s digital journey, no organization can thrive on its own. To create true value for your organization and help meet business objectives, your organization will need to build a lasting relationship with your third parties. Organizations will need to adopt the art and science of engagement.
The business ecosystem is experiencing a fundamental shift. Organizations are moving away from purely cost-savings partnerships to value-generating risk-sharing partnership models. As the third-party ecosystem grows, the ability to manage and govern third parties is becoming more critical to success.
This month our clocks spring forward and we gain an extra hour of daylight. To make the most of that extra hour, consider attending a networking event, thought leadership webinar or exploring SIG’s new partnership with Everest Group that brings delegates proprietary research, insights and analysis. Ready to get started?
Midwestern Regional SIGnature Event
March 6 Minneapolis Central Library
The Midwestern Regional SIGnature Event takes place at the beautiful Minneapolis Central Library on March 6. The event includes a great lineup of speakers from BB&T, Best Buy, Everest Group, Ontala and Virtual Operations who will present on topics that include third-party risk management, artificial intelligence in procurement, sourcing transformation strategies and how to buy digital platforms for your enterprise.
The event will begin with an executive roundtable for director-level and above delegates, while their teams take part in a training workshop on the fundamentals and frameworks of third-party risk management with risk expert Linda Tuck Chapman, who created the Certified Third Party Risk Management Program for SIG University.
To learn more about the day’s events, speakers, who should attend and to register you and your team, visit our website.
January saw record low temperatures all over the country and February shows no signs of easing up! Make the most of your time inside by getting caught up on the latest industry research from the experts at GEP, Coupa, Forrester and RapidRatings. Or if you’re itching to get outside the office, consider attending the Executive Immersion Program in New York City on February 7.
Executive Immersion Program with Morgan Lewis
Morgan Lewis Offices, New York City February 7
The powerhouse team from Morgan Lewis Law will be holding a masterclass on contract drafting, complex negotiations and artificial intelligence in sourcing. Morgan Lewis Partner Edward Hansen draws from his years of experience to discuss the principles of contracting and how to negotiate a transformational deal. You can expect controversial topics and lively discussions.
This interactive masterclass will include direct examples from experienced and innovative industry leaders who focus on information technology-enabled transformation as well as customer and vendor outsourcing deal management. This workshop is specifically designed for business leaders, practitioner sourcing professionals, and in-house counsel who work together to create value for their organizations.
Addressing the Services Spend Management Challenge
Coupa Software commissioned Forrester Consulting to evaluate the state of services and contingent workforce management, addressing the unique set of challenges firms face, the kinds of software tools needed to support services spending, and the internal adoption and usage of these tools.
Bruce is a distinguished thought leader and global innovator, with over three decades’ experience within the human capital and workforce management industry. In his current role, Bruce is involved in new services and product idea generation, sales presentations, internal and external evangelism, digital and social media strategies, and lead generation. He gives us an inside look into his role, how he acts as a key partner to the business and his outlook on the future of work.
Your CPO keynote presentation at the Denver CPO Meet and Eat is about leveraging spend management within services categories--why is this an important topic?
There is a lot of talk about spend analytics, data and how that is the future of success. Our position is that spend analytics is a wonderful tool and capability but we’ve yet to see the capability evolve beyond goods-level detail. As procurement teams are continuing to try to find ways to better address services spend and deliver value to their organizations, we feel that there is tremendous opportunity by thinking differently about this space.
Alexander Beck, PhD, is a data scientist with a demonstrated history of utilizing machine learning and data science in the financial sector, especially asset management. Alexander has a 10-year track record in business applicable artificial intelligence research, including in the fields of financial markets and customer analytics.
Data scientists analyze and interpret mountains of complex digital data to inform decision-making and strategic processes. When it comes to digital procurement and supply chains, data scientists can automate workflows and employ predictive analytics to more accurately forecast demand or disruption.
IBM predicts that demand for data scientists will increase by 28 percent by 2020, with Finance and Insurance, Professional Services and IT generating the most demand. This role often requires an advanced degree, such as a master’s or PhD. For those who are looking to add data scientists to their teams or want to learn how to best work with data scientists, Alexander shares insight into his function, how he assists the business to make informed decisions and automate workflows, and highlights some common misconceptions about data scientists.
The relationship between buyers and providers can be a tricky one, especially when operating across multiple continents. Speaking during a podcast interview with Dawn Tiura, Sean Delaney, Vice President of Sales for cloud platform Determine, draws on his experience as both a buyer and provider to share best practices for relationships that are sustainable and strategic.
WORK ON YOUR SOFT SKILLS
Technical expertise is valuable, but your ability to establish a rapport with customers is important for sustainable relationships. “Candor is important because there's a large degree of personal credibility that buyers are putting on the line when selecting a vendor," says Delaney. "That needs to be understood as a seller and we need to make sure that we don't break that trust. That's our role.”
Early days were characterized by excitement over the dramatic productivity and cost-saving benefits enabled by RPA. Over time, however, the limitations of rules-based bots have emerged. For one thing, basic RPA tools can’t adjust to new conditions or changes in their environment. Even the slightest deviation from the process they’re trained to follow triggers an exception that requires a human to step in, thereby sapping the solution’s productivity.
Another issue is the complexity surrounding deployment of RPA bots. While instructing a bot to perform a task is relatively easy, it does involve a level of programming expertise. Most end users of RPA are on the business side and lack the requisite technical knowledge. That means that setting up a bot requires an RPA programmer. Demand for RPA skills, meanwhile, is through the roof. (Witness the volume of urgent “we’re hiring” notices on LinkedIn pleading for people with Automation Anywhere, Blue Prism and UiPath certifications.) As a result, because the intervention of scarce technical resources is required, bottlenecks often occur when deploying a bot for a business user.
Alex Kozlov, Director of Content for Softtek US & Canada