Send and Review Security Questionnaires

Security questionnaires are essential for evaluating a vendor’s data protection practices. Sprinto enables you to upload, send, and manage security questionnaires as part of your vendor due diligence and risk assessment workflows.

You can choose to use Sprinto’s predefined templates or create your own questionnaire in a CSV format.

1. Upload a Security Questionnaire Template

You can upload your own template or customise Sprinto’s predefined version.

Steps:

1. Log in to the Sprinto dashboard and navigate to Data Library > Vendors.

2. Navigate to Vendor security questionnaire tab.

1. Click Add questionnaire.

2. Download Sprinto’s template (or edit the existing Sprinto CSV).

3. Populate the template with:

   • Question

   • Description (optional)

   • Response type (single/multi-select, free text)

   • Answer options

   • Mandatory flag

   • Category

4. Click Upload file and select your CSV.

5. Enter a Questionnaire name.

6. You can also select frameworks, risk level and vendor categories.

7. Select the check boxes if you wish to make additional comments mandatory or make attachments mandatory.

1. Click Preview & Add Questionnaire.

2. Review and click Add Questionnaire to finalise.

2. Review Questionnaire Responses

You’ll be notified when a vendor submits their response.

Steps:

1. Go to Vendor documents tab of the respective vendor.

2. Click on the submitted questionnaire.

3. Review responses in-line or click Download to export a copy.

4. Use filters to quickly navigate through long questionnaires or identify unanswered mandatory questions.