Previous chapters presented individual lifecycle phases: qualification, onboarding, monitoring, development, exit. However, risk management doesn't fit this sequence—it's not a standalone phase but a dimension pervading the entire lifecycle.
During qualification, risk assessment determines due diligence depth. During onboarding, monitoring intensity. During governance, review frequency. At exit, decision urgency. In every phase, the same question: what risk does this supplier represent, and is the control appropriate?
Fluenta One provides continuous monitoring in five areas:
Monitoring cadence depends on the supplier's tier classification: Tier 1 suppliers receive continuous monitoring, annual automatic screening suffices for Tier 4 suppliers.
Fluenta One can integrate external data sources for proactive monitoring—company information services (e.g., OPTEN), news sources, NIS2 reports. It sends automatic notifications for critical events, and predefined emergency workflows activate for critical suppliers, including immediate alternative supplier suggestions.
A supplier incident—SLA breach, data protection event, supply outage, quality defect—initiates a structured recording process. The system requests four data points: incident type, severity (P1–P4), affected service, and business impact description.
From the moment of recording, the incident is built into the supplier profile: severity automatically affects the scorecard, incident frequency trend appears in leading indicators, and recurring incidents trigger CAPA workflow.
Fluenta One enables tracking of sub-supplier risk behind primary suppliers. The Supply Chain Map visually depicts the entire supplier → sub-supplier network, with color coding indicating current compliance status.
This is critical for suppliers who depend on a single sub-supplier, access sensitive data through a sub-supplier, or operate in regulated industries. The map immediately makes visible if a critical sub-supplier moves to non-compliant status—even if the primary supplier itself is compliant.
The system manages compliance along specific frameworks:
Fluenta One ensures regulatory compliance at platform level: ISO 27001 certified infrastructure, GDPR-compliant data handling, audit trail meeting banking compliance regulations. Every user action is logged with timestamp, with state before and after changes. Audit data is exportable in Excel, PDF, and CSV formats.