https://www.navex.com/en-gb/platform/manage-third-party-risk/simplified-vendor-risk-management/