Assessment Submission Process for Non-Mednet Departments - Third Party Risk Management

This process applies if any of the following apply: 

A.  Information Security & Data Privacy
Transaction involves a third-party (supplier/vendor, consultant, etc.) that will:

  • Access, create, receive, maintain and/or transmit UC data;
  • Process credit card transactions on behalf of UC; and/or
  • Access any UC system(s)

B.  Digital Accessibility 
Transaction involves technology, including web applications, software subscriptions/licenses, mobile apps, website design/development, wearable technology, kiosks, and similar.

Steps:

  1. Before requisition submission, submit the UCLA SNOW Triage Form  
  2. Users will receive an email approval notice upon approval via SNOW
  3. Attach approval notice to requisition
  4. Submit requisition to Campus Purchasing in BruinBuy*

* Make sure all other applicable transaction requirements are addressed before submitting requisitions to Campus Purchasing.