Upload vendor documents
Record created!
Malformed data and/or validation errors
Invalid Authorization
You are not allowed to perform this action
The file was too large to upload
Internal server error
Third party system was unavailable
Response Code: 412
You must accept the Drata terms and conditions to use the API
{- "data": [
- {
- "id": 1,
- "name": "Acme",
- "category": "ENGINEERING",
- "risk": "MODERATE",
- "type": "CONTRACTOR",
- "critical": false,
- "location": "USA",
- "servicesProvided": "Perform security scans once a month",
- "dataStored": "Resulting reports of security scans",
- "hasPii": true,
- "passwordPolicy": "USERNAME_PASSWORD",
- "passwordRequiresMinLength": true,
- "passwordMinLength": 8,
- "passwordRequiresNumber": true,
- "passwordRequiresSymbol": true,
- "passwordMfaEnabled": true,
- "contactAtVendor": "John Doe",
- "notes": "Meeting once a month to adjust contract",
- "createdAt": "2020-07-06 12:00:00.000000",
- "updatedAt": "2020-07-06 12:00:00.000000",
- "user": { },
- "documents": [
- {
- "id": 1,
- "name": "AWS SOC 2 2018",
- "createdAt": "2020-07-06 12:00:00.000000",
- "updatedAt": "2020-07-06 12:00:00.000000"
}
], - "lastQuestionnaire": { },
- "isSubProcessor": false,
- "isSubProcessorActive": false,
- "archivedAt": "2020-07-06 12:00:00.000000",
- "status": "ACTIVE",
- "renewalDate": "2020-07-06",
- "renewalScheduleType": "ONE_YEAR",
- "renewalDateStatus": "COMPLETED",
- "confirmedAt": "2020-07-06 12:00:00.000000",
- "reviews": [
- {
- "id": 1,
- "updatedAt": "2024-10-04",
- "reviewer": "John Doe",
- "reviewDate": "2024-10-04",
- "reportIssueDate": "2024-10-04",
- "socReport": "SOC_1",
- "socReportType1": true,
- "socReportType2": true,
- "socType1StartDate": "2024-10-04",
- "socType1EndDate": "2024-10-04",
- "socType2StartDate": "2024-10-04",
- "socType2EndDate": "2024-10-04",
- "reportOpinion": "UNQUALIFIED",
- "encompassBusinessNeeds": true,
- "followUpActivity": "User must proceed to...",
- "hasMaterialImpact": true,
- "cpaFirm": "CPA firm name",
- "cpaProcedurePerformed": "The following procedures were performed...",
- "subserviceOrganization": "Subservice Inc.",
- "subserviceOrganizationUsingInclusiveMethod": true,
- "subserviceOrganizationProcedurePerformed": "The following procedures were performed...",
- "trustServiceCategories": [
- {
- "id": 1,
- "category": "AVAILABILITY"
}
], - "userControls": [
- {
- "id": 1,
- "name": "End User Control 1",
- "inPlace": true
}
], - "services": [
- {
- "id": 1,
- "name": "Service 1"
}
], - "locations": [
- {
- "id": 1,
- "city": "San Diego",
- "stateCountry": "CA"
}
], - "findings": [
- {
- "id": 1,
- "description": "Finding 1"
}
]
}
], - "sharedAccountId": "aaaaaaaa-bbbb-0000-cccc-dddddddddddd",
- "isDrataUser": false,
- "events": 4,
- "impactLevel": "INSIGNIFICANT",
- "securityReview": [
- {
- "id": 1,
- "requestedAt": "2019-08-24T14:15:22Z",
- "reviewDeadlineAt": "2019-08-24T14:15:22Z",
- "decision": "APPROVED",
- "note": "string",
- "status": "NOT_YET_STARTED",
- "type": "SECURITY",
- "requesterUser": {
- "id": 1,
- "firstName": "Sally",
- "lastName": "Smith",
- "jobTitle": "CEO",
- "drataTermsAgreedAt": "2020-07-06 12:00:00.000000",
- "createdAt": "2020-07-06 12:00:00.000000",
- "updatedAt": "2020-07-06 12:00:00.000000",
- "roles": [
- "ROLE",
- "ANOTHER_ROLE"
], - "backgroundChecks": [
- {
- "id": null,
- "userId": null,
- "status": null,
- "caseId": null,
- "caseInvitationId": null,
- "url": null,
- "manualCheckDate": null,
- "manuallyCheckUrl": null,
- "type": null,
- "source": null,
- "reportData": null,
- "user": null,
- "outOfScopeReason": null,
- "outOfScopeAt": null,
- "invitationEmail": null,
- "linkedAt": null,
- "createdAt": null,
- "updatedAt": null
}
], - "identities": [
- {
- "id": null,
- "identityId": null,
- "username": null,
- "connectedAt": null,
- "disconnectedAt": null,
- "hasMfa": null,
- "user": null,
- "connection": null,
- "hasIdp": null
}
]
}, - "user": {
- "id": 1,
- "firstName": "Sally",
- "lastName": "Smith",
- "jobTitle": "CEO",
- "drataTermsAgreedAt": "2020-07-06 12:00:00.000000",
- "createdAt": "2020-07-06 12:00:00.000000",
- "updatedAt": "2020-07-06 12:00:00.000000",
- "roles": [
- "ROLE",
- "ANOTHER_ROLE"
], - "backgroundChecks": [
- {
- "id": null,
- "userId": null,
- "status": null,
- "caseId": null,
- "caseInvitationId": null,
- "url": null,
- "manualCheckDate": null,
- "manuallyCheckUrl": null,
- "type": null,
- "source": null,
- "reportData": null,
- "user": null,
- "outOfScopeReason": null,
- "outOfScopeAt": null,
- "invitationEmail": null,
- "linkedAt": null,
- "createdAt": null,
- "updatedAt": null
}
], - "identities": [
- {
- "id": null,
- "identityId": null,
- "username": null,
- "connectedAt": null,
- "disconnectedAt": null,
- "hasMfa": null,
- "user": null,
- "connection": null,
- "hasIdp": null
}
]
}, - "vendor": {
- "id": 1,
- "name": "Acme",
- "category": "ENGINEERING",
- "risk": "MODERATE",
- "type": "CONTRACTOR",
- "critical": false,
- "location": "USA",
- "servicesProvided": "Perform security scans once a month",
- "dataStored": "Resulting reports of security scans",
- "hasPii": true,
- "passwordPolicy": "USERNAME_PASSWORD",
- "passwordRequiresMinLength": true,
- "passwordMinLength": 8,
- "passwordRequiresNumber": true,
- "passwordRequiresSymbol": true,
- "passwordMfaEnabled": true,
- "contactAtVendor": "John Doe",
- "notes": "Meeting once a month to adjust contract",
- "createdAt": "2020-07-06 12:00:00.000000",
- "updatedAt": "2020-07-06 12:00:00.000000",
- "user": { },
- "documents": [
- {
- "id": null,
- "name": null,
- "fileUrl": null,
- "createdAt": null,
- "updatedAt": null
}
], - "lastQuestionnaire": { },
- "isSubProcessor": false,
- "isSubProcessorActive": false,
- "archivedAt": "2020-07-06 12:00:00.000000",
- "status": "ACTIVE",
- "renewalDate": "2020-07-06",
- "renewalScheduleType": "ONE_YEAR",
- "renewalDateStatus": "COMPLETED",
- "confirmedAt": "2020-07-06 12:00:00.000000",
- "reviews": [
- {
- "id": null,
- "updatedAt": null,
- "reviewer": null,
- "reviewDate": null,
- "reportIssueDate": null,
- "socReport": null,
- "socReportType1": null,
- "socReportType2": null,
- "socType1StartDate": null,
- "socType1EndDate": null,
- "socType2StartDate": null,
- "socType2EndDate": null,
- "reportOpinion": null,
- "encompassBusinessNeeds": null,
- "followUpActivity": null,
- "hasMaterialImpact": null,
- "cpaFirm": null,
- "cpaProcedurePerformed": null,
- "subserviceOrganization": null,
- "subserviceOrganizationUsingInclusiveMethod": null,
- "subserviceOrganizationProcedurePerformed": null,
- "trustServiceCategories": [ ],
- "userControls": [ ],
- "services": [ ],
- "locations": [ ],
- "findings": [ ]
}
], - "sharedAccountId": "aaaaaaaa-bbbb-0000-cccc-dddddddddddd",
- "isDrataUser": false,
- "events": 4,
- "integrations": [
- { }
], - "cost": "1088",
- "operationalImpact": "CRITICAL",
- "environmentAccess": "READ_ONLY",
- "impactLevel": "INSIGNIFICANT",
- "dataAccessedOrProcessedList": [
- { }
], - "latestSecurityReviews": [
- { }
], - "riskCount": 0
}
}
], - "riskCount": 0
}
], - "page": 1,
- "limit": 10,
- "total": 100
}