Reworked Vendor Assessment: Faster Reviews for Trusted Vendors

Instead of forcing every vendor through the same manual assessment flow, Humadroid can now recognize known vendors, surface their trust or security pages, and help teams document assurance reviews more efficiently while keeping the evidence trail needed for SOC 2 and ISO
27001 workflows.

What’s new:

• Known vendor intelligence: vendors can be linked to curated known-vendor profiles with public security, trust center, and compliance metadata.
• Clearer vendor status: each vendor now gets a combined compliance status based on manual assessments, assurance reviews, review due dates, and known-vendor confidence.
• Assurance reviews: teams can record that SOC 2, ISO 27001, or similar evidence was reviewed, even when the actual report is only available behind NDA or a customer portal.
• Better vendor dashboard: the dashboard now focuses on what matters most: which vendors are covered, which are trusted, and which need attention.
• Faster review flow: assurance reviews can be created from vendor lists and detail pages without losing context.
• Improved known-vendor management: admins can add vendors and schedule enrichment to discover trust centers, security pages, and public compliance references.

This should reduce busywork for common vendors while still keeping the compliance story complete: who was reviewed, what evidence was considered, where the evidence can be obtained, and when the vendor should be reviewed again.