Assessment Standards

Learn about the international standards and frameworks used to assess vendor compliance.

GRI Standards

Global Reporting Initiative Standards

Environmental, Social & Governance Performance

The Global Reporting Initiative (GRI) Standards provide a comprehensive framework for organizations to report on their environmental, social, and governance (ESG) performance. These standards are widely recognized as the most comprehensive and globally applicable standards for sustainability reporting.

Our system evaluates vendor compliance across six key GRI standards, each addressing critical aspects of responsible business operations.

GRI 201: Economic Performance

Assesses vendor economic performance, financial stability, and contribution to economic development. This standard ensures vendors are financially healthy and contribute positively to the economy.

Assessment Focus:

• Revenue and profitability trends
• Financial stability indicators
• Economic value creation

GRI 302: Energy

Evaluates vendor energy consumption and management practices. Critical for public sector procurement focused on energy consciousness and climate responsibility.

Assessment Focus:

• Energy consumption tracking
• Renewable energy usage
• Energy efficiency initiatives

GRI 305: Emissions

Assesses vendor greenhouse gas emissions and climate impact. Essential for evaluating vendor commitment to environmental sustainability.

Assessment Focus:

• Direct emissions (Scope 1)
• Indirect emissions (Scope 2)
• Emissions reduction targets

GRI 308: Supplier Environmental Assessment

Evaluates how vendors assess their own suppliers' environmental performance, demonstrating commitment to supply chain sustainability.

Assessment Focus:

• Supplier environmental criteria
• Supply chain monitoring
• Vendor engagement programs

GRI 401: Employment

Assesses vendor employment practices, labor rights, and employee welfare. Ensures vendors treat employees fairly and provide good working conditions.

Assessment Focus:

• Employment contracts and benefits
• Labor rights compliance
• Employee development programs

GRI 403: Occupational Health & Safety

Evaluates vendor workplace health and safety practices. Critical for ensuring vendor operations protect employee and public safety.

Assessment Focus:

• Safety management systems
• Incident reporting and prevention
• Employee health programs

ISO 27001: Information Security Management

Digital Governance & Cybersecurity

Information Security Management System Standard

ISO 27001 is the international standard for information security management systems. It specifies requirements for establishing, implementing, maintaining, and continually improving an information security management system.

For public sector procurement, ISO 27001 compliance is critical to ensure vendors can protect sensitive government data and maintain cybersecurity standards.

A.5: Organizational Controls

Evaluates organizational structure, policies, and governance for information security.

• Information security policies
• Organizational structure
• Responsibility assignment

A.6: People Controls

Assesses personnel security, training, and awareness programs.

• Personnel screening
• Security training
• Incident reporting

A.7: Physical Controls

Evaluates physical security of facilities and equipment.

• Facility access control
• Equipment protection
• Environmental controls

A.8: Technical Controls

Assesses technical security measures and system hardening.

• Access control mechanisms
• Encryption standards
• Network security

A.10: Cryptography

Evaluates cryptographic controls and key management.

• Encryption standards
• Key management
• Digital signatures

A.12: Operations Security

Assesses operational security practices and incident management.

• Change management
• Incident management
• Backup and recovery

ISO 50001: Energy Management

Energy Management System Standard

Sustainability & Energy Efficiency

ISO 50001 specifies requirements for establishing, implementing, maintaining, and improving an energy management system. It enables organizations to establish systems and processes to improve energy performance.

For public sector procurement, particularly in the energy sector, ISO 50001 compliance demonstrates vendor commitment to energy efficiency and sustainability.

4.1: Understanding the Organization

Evaluates vendor understanding of energy context and relevant requirements.

• Energy context analysis
• Stakeholder identification
• Regulatory compliance

4.4: Energy Review

Assesses vendor energy consumption analysis and baseline establishment.

• Energy consumption tracking
• Baseline establishment
• Trend analysis

6.5: Energy Performance Indicators

Evaluates vendor energy performance metrics and monitoring.

• KPI definition
• Performance measurement
• Target setting

8.1: Operational Planning & Control

Assesses vendor operational procedures for energy management.

• Operational procedures
• Energy control measures
• Emergency preparedness

8.2: Design & Procurement

Evaluates vendor consideration of energy in design and procurement.

• Energy-efficient design
• Supplier selection
• Equipment standards

9.1: Monitoring & Measurement

Assesses vendor monitoring and measurement of energy performance.

• Metering systems
• Data collection
• Performance analysis

Compliance Assessment Visualization

Standards Weighting in Overall Score

Distribution of assessment criteria

Typical Vendor Compliance Trajectory

Score improvement over time with remediation

Compliance Score

Explore Vendor Assessments

See how vendors are assessed against these standards in the dashboard.

View Dashboard