California Transparency in Supply Chains Act
Assess supply chain partner labor practices
The California Transparency in Supply Chains Act is a law enacted in 2012 that requires companies to disclose their efforts to ensure that the goods they sell are not produced by workers who are forced into servitude or labor. The law applies to any company that does business in the U.S. state of California, with at least $100 million in global revenue, and that makes or sells goods in California.
A company’s public disclosure must be conspicuous and include information on how it:
- Verifies labor practices in its supply chains
- Audits suppliers
- Certifies that materials are not produced by forced labor
- Maintains internal accountability
- Trains employees and management
Prevalent helps organizations apply a rigorous level of due diligence to their suppliers by determining if a public statement exists, and by validating policies and processes through modern slavery risk assessments and continuous external monitoring of their real-world practices. Armed with these insights, organizations improve their visibility into their supply chain partners’ labor practices, reducing the risk of reputational damage.
Key Benefits
- Publish an annual statement detailing the steps taken to ensure that human trafficking and slavery is not taking place in the business or supply chain
- Improve due diligence on suppliers to ensure they are adhering to the law
Key Features
Supplier Pre-Screening
Rapidly pre-screen vendors using a library of continuously updated risk profiles based on inherent/residual risk, assessment results and real-time reputational monitoring.
Comprehensive Supplier Profile
Tap into 550,000+ sources of vendor intelligence to build a comprehensive supplier profile that includes industry and business insights and maps potentially risky 4th-party relationships.
Inherent Risk Scoring
Use a simple assessment with clear scoring to track and quantify inherent risks for all onboarded suppliers.
Modern Slavery Assessment
Leverage Prevalent’s built-in Modern Slavery assessment to determine adherence to policies. Review and approve assessment responses to automatically register risks or reject responses and request additional input.
Central Risk Register
Normalize, correlate and analyze assessment results and continuous monitoring intelligence for unified reporting and remediation.
Built-in Remediation Guidance
Take actionable steps to reduce modern slavery exposure with built-in remediation recommendations and guidance.
Document & Evidence Management
Store and distribute Modern Slavery policy documents for dialog and attestation.
Compliance Reporting
Visualize and address compliance requirements by automatically mapping assessment results to Modern Slavery requirements.
Relationship Mapping
Identify relationships between your organization and third, fourth and Nth parties to discover dependencies and assess your exposure.
Schedule a free, personalized solution demonstration to see if Mitratech Prevalent is a fit for you.
APRA CPS 234 Information Security Compliance
The Australian Prudential Regulation Authority (APRA) implemented the CPS 234 regulatory standard in July 2...
System & Organization Control (SOC) 2 Compliance
SOC 2 is a standard that is designed to provide assurance that an organization's systems are set up to cove...
The Standard Information Gathering (SIG) Questionnaire
Prevalent offers both the SIG Core and SIG Lite questionnaires as part of our Third-Party Risk Management P...
PCI DSS Compliance
The Payment Card Industry Data Security Standard (PCI DSS) was developed to enhance cardholder data securit...
NIST SP 800-161r1 Compliance
The National Institute of Standards and Technology Special Publication 800-161 is a cybersecurity supply ch...
NIST SP 800-53r5 Compliance
The National Institute of Standards and Technology Special Publication 800-53 (NIST SP 800-53) is a foundat...
NIST Cybersecurity Framework (CSF) 2.0
In February 2024, NIST released version 2.0. The new version includes several changes to address growing ch...
ISO 27001, 27002 & 27036-2 Compliance
The ISO 27002, 27002, 27018, 27036-2 and 27701 standards set requirements for establishing, implementing, m...
We’re here to help
Contact us and we’ll answer any questions about how Mitratech supports your success.
