The Complete Vendor Due Diligence Checklist

Understanding who ultimately owns and controls a vendor is critical for identifying hidden risks:

• Identify all shareholders with 10%+ ownership
• Trace beneficial ownership to natural persons
• Map the corporate structure (parent companies, subsidiaries, affiliates)
• Identify directors, officers, and key management personnel
• Check for politically exposed persons (PEPs) in the ownership chain

Screen the vendor, its beneficial owners, and key personnel against comprehensive sanctions lists:

• OFAC Specially Designated Nationals (SDN) list
• EU Consolidated Sanctions List
• UN Security Council Sanctions
• OFSI (UK) sanctions list
• Country-specific sanctions programmes
• PEP databases and watchlists
• Debarment and exclusion lists (World Bank, government procurement)

• Review recent financial statements (if available)
• Check credit ratings and payment history
• Verify no outstanding liens, judgments, or bankruptcy proceedings
• Assess financial stability relative to the contract value
• Check for recent significant changes in financial condition

• Search federal and state court records for litigation history
• Check regulatory enforcement actions and consent orders
• Review any fines, penalties, or remediation orders
• Identify patterns of recurring legal issues
• Check for any ongoing investigations or proceedings

• Screen for adverse news coverage (fraud, corruption, sanctions violations)
• Check for negative regulatory commentary
• Review industry reputation and peer assessment
• Check social media and whistleblower reports
• Search in relevant local languages, not just English

Grep's adverse media screening covers global news sources and uses AI to filter genuine risk signals from noise.