Supplier Information Security Questionnaire
1.
Organisation & Scope
Q1
Please confirm your organisation name & primary service provided to us.
Organisation Name *
Primary Service Provided *
Q2
Will your service involve any of the following? (Select all that apply)
Access to our systems
Processing of personal data
Storage of our data
Network connectivity/integration
None of the above
2.
Security Certification & Assurance
Q3
Do you hold any recognised security certifications? (Select all that apply)
ISO/IEC 27001
Cyber Essentials
Cyber Essentials Plus
SOC 2
NIST-aligned framework
None
Other (please specify)
Q4
Are these certifications current and independently audited?
Yes
No
Not applicable
Q5
Are you willing to provide evidence upon request (e.g. certificate, summary report)?
Yes
No
3.
Governance & Policies
Q6
Do you maintain formal information security policies?
Yes (documented and reviewed regularly)
Yes (informal or partially documented)
No
Q7
Do you assign responsibility for information security (e.g. security officer, team, or equivalent)?
Yes
No
4.
Data Protection & GDPR
Q8
Do you process personal data in compliance with UKGDPR and Data Protection Act 2018?
Yes
No
Not Applicable
Q9
Where is data primarily stored/processed?
UK
EU
Outside UK/EU
Multiple regions
Q10
Do you have a documented data breach/incident response process?
Yes
No
5.
Technical & Operational Controls
Q11
Which of the following controls are in place? (Select all that apply)
Access control (e.g. RBAC, least privilege)
Multi-factor authentication (MFA)
Encryption of data at rest
Encryption of data in transit
Regular patching & vulnerability management
Logging & monitoring
None of the above
6.
Third Parties & Supply Chain
Q12
Do you rely on third-party suppliers to deliver your service to us?
Yes
No
Q13
If yes, do you assess their security posture?
Yes
No
Not applicable
7.
Risk & Compliance
Q14
Have you experienced any significant data breaches or security incidents in the past 24 months?
No
Yes (please provide brief details)
8.
Declaration
Q15
Please confirm the information provided is accurate to the best of your knowledge.
Yes
Thank you!
Your submission has been received.
You can now close this window.
Oops! Something went wrong while submitting the form.
