Technology Assessment Form (TAF)

University departments and administrative offices are encouraged to request vendor product assessment on data security and accessibility BEFORE purchase is made or contract renewed.  Please ask the vendor to provide HECVAT (for data security) and also VPAT (for accessibility) forms within last 12 months and upload them when you submit the request or add to this ticket later.  Please allow 10 business days for our teams to process both reviews upon receipt of HECVAT and VPAT.  

What is Higher Education Community Vendor Assessment Toolkit (HECVAT)?

The HECVAT is a questionnaire designed for higher education to measure vendor cybersecurity risks. Before you purchase a third-party solution, ask the solution provider to complete a HECVAT tool to confirm that information, data, and Cybersecurity policies are in place to protect sensitive institutional information and constituents' PII. Vendors working with higher education often already have HECVAT completed.  Please fill out the request to find out which version of HECVAT to submit and ask for a copy that is less than 12 months old. The blank form is under the Vendor Assessment Tool section.

What is Voluntary Product Accessibility Template (VPAT)

The ITI VPATĀ® is the leading global reporting format for assisting buyers and sellers in identifying information and communications technology (ICT) products and services with accessibility features. It is a self-disclosing document produced by the vendor third party which details each aspect of state and federally-mandated accessibility requirements and how the product supports each criteria.

 

 
Request Vendor Product Accessibility & Security Assessment

Details

Service ID: 45258
Created
Wed 8/19/20 11:16 AM
Modified
Fri 2/18/22 4:38 PM