Last Reviewed: 6th April 2026
Next Review Due: 6th April 2027
(Public Summary)
As a trusted provider of high-availability and secure load balancing solutions, RELIANOID recognizes that third-party service providers, suppliers, and partners play a key role in delivering and supporting our operations. This Third-Party Risk Management (TPRM) Policy outlines how we assess, monitor, and manage risks related to external parties that process data, deliver components, or influence our services.
This policy applies to:
Before engaging any third party, RELIANOID performs a risk assessment that includes:
Risk assessments also consider operational resilience exposure, dependency concentration, incident response capabilities, and cybersecurity governance maturity.
Only vendors meeting our minimum security and compliance criteria are approved.
Every vendor relationship includes:
We maintain a third-party register and regularly monitor:
Monitoring activities include tracking publicly disclosed vulnerabilities, security advisories, and relevant threat intelligence associated with critical third-party technologies and services.
RELIANOID applies continuous monitoring and periodic reassessment processes for critical third-party relationships to identify evolving operational, cybersecurity, and compliance risks.
Third-party access permissions are reviewed periodically and restricted according to least-privilege and operational necessity principles.
Critical vendors are reviewed at least annually or after any major incident.
In the event of a security breach or disruption involving a third party:
Incident response coordination may include escalation management, containment measures, remediation tracking, and post-incident security reviews when operational or security risks are identified.
When a third-party relationship ends:
RELIANOID considers third-party service dependencies within its business continuity and operational resilience planning processes.
Lessons learned from vendor assessments, operational incidents, security reviews, and compliance activities are integrated into RELIANOID’s continuous improvement and risk management processes.
RELIANOID’s Third-Party Risk Management Policy reflects our commitment to operational resilience, cybersecurity governance, and supply chain security. Through continuous assessment, monitoring, and vendor management practices, we work to safeguard customer data, maintain service continuity, and support compliance with applicable regulatory frameworks including DORA, GDPR, and NIS2 principles.
| Date | Comment |
| 14th April 2025 | Initial document publication. |
| 6th April 2026 | Updated with continuous monitoring controls, vulnerability governance practices, operational resilience considerations, and enhanced third-party risk management processes. |
We welcome requests for detailed security documentation, risk mapping matrices, or compliance disclosures.