Products
- Products
  - Third-Party Risk Management
    A third-party management solution to match your program maturity
  - ABAC Compliance
    Combat third-party bribery and corruption risk and comply with international regulations
  - Environmental, Social & Governance (ESG)
    Hold your suppliers to a standard of integrity that reflects your organization’s ESG policies including German Supply Chain Due Diligence Act (LkSG)
  - Financial Services Risk Assessment
    Conduct a comprehensive Financial Services Risk Assessment directly aligned to OCC guidance
  - Information Security
    Protect digital assets by assessing risks from vendors that access your data and/or networks
  - Data Privacy & GDPR
    Ensure vendors are compliant with data privacy regulations and standards, including the CCPA, GDPR and more
  - Performance Management
    Understand, monitor, and manage the performance standards of your third-party suppliers
  - Risk Intelligence Connectors
    Augment Aravo assessments, continuous monitoring, and other due diligence with specialized data providers
  - Supply Chain Resilience
    Prevent, defend, respond, and recover from hazards that put continuity of supply at risk
  - Capabilities
    Pre-configured, best practice solutions that are aligned to customers’ maturity
- What’s New — Aravo for ESG Learn how to build sustainable and ethical supply chains across your extended enterprise
Industry
- Industries
  Supporting successful programs across virtually every sector, we understand your business
  - Financial Services Industry
    A third-party management platform that understands regulatory and compliance requirements
  - Insurance
    Third-Party Risk Management and Compliance for the Insurance Industry
  - Pharma
    Third-Party Risk Management and Compliance Solutions for the Pharmaceutical and Life Sciences Industry
  - High Tech
    Third Party Risk Management and Compliance Solutions for the High Tech Industry
  - Consumer Goods
    Third-Party Risk Management Solutions for the CPG Industry
  - Manufacturing
    Third-Party Risk Management and Compliance Requirements for Manufacturing Companies
- Featured Resource
  
  Learn more about Aravo and how we can help organizations like yours
Resources
- Resources
  - Customer Tools / Aravo Academy
    The Aravo Academy will help get you up and running with Aravo’s technology.
  - Strategic Alignment Framework™
    An adaptive framework aligning your TPRM goals, plan, and delivery program for your organization.
  - Blog
    Aravo’s blog for expert third-party risk and compliance content
  - TPRM Solution Voyage
    Explore how to choose the right TPRM software for your business
  - TPRM Maturity Calculator
    How mature is your third-party risk management program? Calculate your score
  - Events and Webinars
    Explore Aravo’s events and webinars to get the latest in TPRM and compliance trends from leading experts.
  - Glossary
    The ABCs of TPRM. Here you will find business terms risk professionals use on a daily basis
  - Guidance and Regulations
    An overview of the vast range of regulations and guidance that encompass TPRM
- Featured Resource
  
  Get your need-to-know guide on the future of supply chain regulations
About Us
- About Aravo
  Find out more about Aravo, our purpose, and why leading brands trust our technology solutions
  - Expertise
    Market leaders for 20 years, our services professionals have the expertise to work as an extension of your team
  - Leadership
    Our management team. Commited to supporting “Better Business”, delivering the best experience for our customers
  - Partners
    Learn more about our partner ecosystem
  - Press Releases
    Get the latest information on Aravo, including company and product updates
  - Careers
    Explore career opportunities globally and learn more about Aravo culture
- Latest Analyst Report
  
  Learn why Aravo is a third-time category leader for TPRM
Request Demo
Contact

OCC Bulletin 2023-17

In 2023, the OCC released comprehensive and specific instructions regarding the management of Third-party Risk Management. This new guidance supersedes all previous instructions. The bulletin aims to assist banks, including national banks and federal savings associations, in evaluating and controlling the risks involved in their partnerships with external entities. A third-party relationship refers to any formal or informal business agreement between a bank and another organization.

“Regardless of a banking organization’s approach, applying a sound methodology to designate which activities and third-party relationships receive more comprehensive oversight is key for effective risk management. It is important for each banking organization to assess risks presented by each of its third-party relationships and tailor its risk management processes accordingly.” (Page 9)

“With respect to commenters focused on steps to limit the burdens of due diligence, including collaboration with other banking organizations and engaging with third parties that specialize in conducting due diligence, the agencies note that such collaborative efforts could be beneficial and reduce burden, especially for community banking organizations, and have made certain clarifying revisions to the guidance in that regard. However, use of any collaborative efforts does not abrogate the responsibility of banking organizations to manage third-party relationships in a safe and sound manner and consistent with applicable laws and regulations (including antitrust laws). It is important for the banking organization to evaluate the conclusions from such collaborative efforts.” (Page 17)

Read the full guidance

Source Regulation

OCC Bulletin 2023-17

The Definition of Better Business