Know who has access
Start with a simple list of the suppliers and tools that hold your data or connect to your systems. You can't manage risk you haven't mapped.
Rank them by how much damage a problem with each would cause.
Want a plain-English view of where your business stands?
Book a free cyber health checkAsk proportionate questions
- Do they hold a recognised standard such as Cyber Essentials or ISO 27001?
- How do they protect and back up your data?
- How would they notify you of a breach, and how quickly?
- Who at the supplier can access your data, and how is that controlled?
Reduce your own exposure
Limit the access each supplier has to only what they need, review it periodically, and remove access promptly when a relationship ends.
Build a second check into sensitive processes — such as confirming changes to payment details through a separate channel.
Focus your effort on the handful of suppliers that could hurt you most, rather than treating every vendor the same.
Turn this into an action plan
Book a free cyber health check and get a plain-English view of where your business stands.
Book a free cyber health check