All intakes
INTK-2026-0035AssessmentHighConfidential
AI assistant for support agents
Embed an LLM-powered assistant in the support tool.
- Submitted
- SME review
- Procurement
- Due diligence
- Assessment5
- Contracting6
- Approved7
Overview
Business owner
Marie Dupontmarie.dupont@company.com
SME reviewer
Priya Patelpriya.patel@company.com
Specialist reviews
Privacy·Approved w/ conditions
Security·Approved w/ conditions
Architecture·Approved
Procurement
Mike Johanssonmike.j@company.com
Vendor
Users
25
Annual cost
€60,000
Submitted
21 days ago
Updated
1 day ago
Expected go-live
—
General
- Nature of the service
- AI assistant for customer support agents
- Proposed vendor (if known)
- Acme AI
- Estimated contracted value (€)
- 60,000
- Entity signatory
- Acme EU SAS
- Beneficiary department
- Customer Support
- Contract type
- New service
- Does the service support a critical or important business function?
- No
- If yes, which critical / important function?
- —
- Is the service defined as a material process in the BIA? Select the RTO.
- —
Outsourcing
- Is it an outsourcing activity?
- No
- Is the supplier critical or important (per DORA / EBA logic)?
- —
- Will the supplier subcontract (4th parties)?
- —
- Is there a concentration risk (sole provider)?
- —
- Is an exit strategy available?
- Yes
Data privacy & AI
- Will the supplier have access to personal data in the delivery of the service?
- Yes
- Estimated volume of personal data processed per annum
- 100,000
- Estimated volume of sensitive personal data processed per annum
- —
- Will data be transferred outside the EU / EEA?
- Yes
- Will the vendor act as:
- Processor
- Is a DPIA required?
- Yes
- Will the service use AI?
- Yes
Information security
- Maximum classification of information handled by the supplier
- Confidential
- Will the vendor have privileged access to company systems and/or networks?
- No
- Will the vendor have access to the company's restricted zones / premises?
- No access
- Highest confidentiality impact in case of a major data leakage at the vendor
- High
- Highest integrity impact in case of major corruption at the vendor
- Medium
- Highest availability impact in case of major disruption at the vendor
- Medium
- Will the vendor host data?
- Yes
- Will the vendor access systems remotely?
- —
- Will the vendor connect via API / integration?
- Yes
- Authentication model: SSO / MFA required?
- Yes
- Any cyber certification (ISO 27001, SOC 2, etc.)?
- No