The Legal Party Assessment Template is designed to be completed when onboarding a new Legal Party - whether internal or external. 

The assessment can be completed before a contract is signed with a Legal Party to ensure that any security and privacy risks are reviewed and addressed early. At this stage, the Legal Party status can be set as planned. Optional controls and evidence can be added for the associated Assets and Third Party, if required.

The assessment is designed to be completed internally by the Information Security or Data Protection departments. However, if required, it can be targeted to the relevant department responsible for procuring the software or to external Legal Parties for completion.

Once the assessment has been completed, the new Legal Entity will automatically populate the relevant registers, and the associated records will be linked together. The Program/Assessment Reviewer will also receive a notification to review and approve the assessment.

• Note: This base template is available for immediate use 'out of the box'. However, you do have an option of customising the assessment questioning, updating guidance, along with adding any additional questions to ensure all of your organisational requirements are met.

Please see an overview below of the Legal Party register used in this assessment.