Third-party due diligence that scales with your business
Vendors, agents, distributors, and business partners create compliance exposure. Ethico automates third-party screening against sanctions lists, PEP databases, and adverse media—with ongoing monitoring that catches changes after onboarding, not just during initial checks.
Screen before exposure, monitor continuously
The Risk
Third parties acting on your behalf can create FCPA and anti-bribery liability. An agent paying bribes, a distributor on sanctions lists, a vendor with government connections—all create exposure.
Due Diligence Coverage
- Sanctions screening (OFAC, global)
- PEP identification (government connections)
- Adverse media screening
- Beneficial ownership identification
- Country risk assessment
Right-size due diligence to actual risk
Not every third party needs the same review. Configure risk tiers based on exposure level, and let the system enforce appropriate screening requirements.
- Agents and distributors
- Government-facing intermediaries
- High-risk country operations
→ Enhanced due diligence, frequent re-screening
- Direct vendors with significant contracts
- Professional service providers
→ Standard screening, annual review
- Commodity suppliers
- Low-value vendors
→ Basic screening, periodic checks
Configurable Workflows: Define risk tiers, set screening requirements, automate the process.
See the complete picture
Integration with Disclosure Management
- Cross-reference vendor relationships with COI disclosures
- Identify employees with personal connections to third parties
- Surface potential conflicts before they become violations
Example
Employee discloses outside consulting. Third-party screening reveals the consulting client is a vendor. System flags the relationship for review.
Third-party risk doesn't stop at onboarding
The Problem
Initial due diligence is point-in-time. Vendor sanctioned in Year 2, you don't know until contract renewal.
Ongoing Monitoring
- Continuous screening against updated lists
- Adverse media alerts
- Ownership change detection
- Customizable monitoring frequency
Evidence for regulators
Complete Documentation
- Screening results and methodology
- Risk assessment rationale
- Approval chain and decisions
- Ongoing monitoring history
- Re-screening results
Audit-Ready
When regulators ask about your third-party due diligence program, you have the evidence.
What's Included
| Capability | Details |
|---|---|
| Sanctions Screening | OFAC, global lists |
| PEP Identification | Political exposure |
| Adverse Media | Negative news screening |
| Risk-Tiered Workflows | Configurable by risk level |
| Ongoing Monitoring | Post-onboarding surveillance |
| Disclosure Integration | COI cross-reference |
| Audit Trail | Complete documentation |
| API Access | Integrate with procurement |
How Risk-Tiered Due Diligence Works
Right-size screening to actual third-party risk
| Risk Tier | Third-Party Types | Screening Level | Re-Screening |
|---|---|---|---|
| Tier 1 (High) | Agents, distributors, government-facing | Enhanced: sanctions, PEP, adverse media, beneficial ownership | Quarterly |
| Tier 2 (Medium) | Direct vendors, professional services | Standard: sanctions, PEP, adverse media | Annually |
| Tier 3 (Low) | Commodity suppliers, low-value vendors | Basic: sanctions screening only | Bi-annually |
Risk criteria configurable: Country risk, contract value, government exposure, industry sensitivity.
"We had 2,000 third parties and no systematic due diligence. Ethico helped us implement risk tiering that focused our resources on the 200 that actually mattered. When regulators asked about our program, we had the documentation."
Implementation Timeline
Third-party due diligence operational in 4-6 weeks
| Phase | Timeline | What Happens |
|---|---|---|
| Discovery | Week 1-2 | Third-party inventory, risk tiering criteria, screening requirements |
| Configuration | Week 2-3 | Risk tiers, screening workflows, approval chains |
| Data Import | Week 3-4 | Existing third-party data migration, initial screening |
| Integration | Week 3-4 | Procurement system connection if applicable |
| Training | Week 4-5 | User training on workflows and reviews |
| Go-Live | Week 5-6 | Ongoing monitoring activated, new third-party workflow live |
What Happens Next
See Risk-Tiered Workflows
30-minute demo showing how third parties are screened at appropriate levels based on risk criteria.
Define Your Risk Tiers
Work with our team to configure risk criteria matching your FCPA/anti-bribery program requirements.
Import Your Third Parties
Initial population screening and risk classification for existing relationships.
Go Live
Ongoing monitoring activated with new third-party screening integrated into procurement.
Frequently asked questions
Automate your third-party due diligence
See how risk-tiered workflows focus your due diligence resources on the third parties that actually create exposure.
See Due Diligence DemoCustom demo for your third-party population and risk criteria.