A Vendor Due Diligence Questionnaire is a structured, standardized assessment instrument used to systematically evaluate a third-party AI provider's security posture, data governance protocols, regulatory compliance, and ethical practices prior to procurement or partnership. It serves as the primary evidence-collection mechanism within the broader third-party risk management lifecycle, transforming abstract vendor claims into verifiable, auditable data points for risk committees.
Glossary
Vendor Due Diligence Questionnaire

What is a Vendor Due Diligence Questionnaire?
A standardized assessment tool used to evaluate a third-party AI provider's security, privacy, and ethical practices before procurement.
In the context of Enterprise AI Governance, these questionnaires extend beyond standard IT security queries to probe model provenance, training data lineage, bias detection methodologies, and conformity assessment readiness under frameworks like the EU AI Act. The output directly informs inherent risk ratings and residual risk scoring, enabling procurement teams to quantify algorithmic supply chain dependencies and enforce model risk tiering before granting system access.
Core Components of an AI VDDQ
A robust Vendor Due Diligence Questionnaire for AI systems must probe beyond standard IT security to assess algorithmic integrity, data provenance, and regulatory compliance. The following components represent the critical assessment domains.
Model Transparency & Documentation
Evaluates the vendor's commitment to algorithmic openness. This section requests structured artifacts like Model Cards and System Cards to verify intended use, performance benchmarks, and known limitations.
- Request a complete AI Bill of Materials (AIBOM)
- Verify the existence of a Foundation Model Transparency Report
- Assess the granularity of Training Data Lineage documentation
Security & Adversarial Robustness
Probes the model's resilience against malicious exploitation. This component requires evidence of testing against Prompt Injection, Jailbreak Susceptibility, and Data Poisoning Vectors.
- Review the latest Red-Teaming Report
- Validate defenses against Model Inversion and Membership Inference Attacks
- Confirm the presence of an Output Moderation API and Guardrail Configuration
Data Governance & Privacy
Scrutinizes the provenance and legal standing of training data. This section ensures compliance with Differential Privacy Budgets and intellectual property laws.
- Audit for Copyright Infringement risks in training data
- Verify Cross-Border Data Transfer Impact Assessments
- Assess the implementation of Purpose Limitation Controls
Regulatory Compliance & Risk Tiering
Maps the vendor's system to specific regulatory frameworks like the EU AI Act. This component classifies the system based on Inherent Risk Rating and Residual Risk Scoring.
- Determine if the system meets High-Risk Classification criteria
- Verify Conformity Assessment documentation
- Review the Responsible Scaling Policy for frontier models
Operational Stability & Lifecycle
Assesses the vendor's operational maturity regarding model deprecation and incident response. This ensures business continuity and prevents Vendor Lock-In Risk.
- Review the Model Deprecation Policy and Rollback Procedure
- Validate the API Stability Commitment
- Confirm the existence of a Kill Switch Mechanism and Escrow Agreement
Fairness & Ethical Alignment
Measures the societal impact of the automated decision system. This component requires quantitative evidence of bias testing and value alignment.
- Analyze the Disparate Impact Ratio across demographics
- Verify training methodology, specifically Reinforcement Learning from Human Feedback (RLHF)
- Test for Specification Gaming and Alignment Faking
How a VDDQ Fits into the Procurement Lifecycle
The Vendor Due Diligence Questionnaire (VDDQ) is a structured gate within the procurement lifecycle that operationalizes AI risk assessment before contractual commitment.
A Vendor Due Diligence Questionnaire is deployed during the vendor evaluation phase, after initial sourcing but before a proof-of-concept. It serves as a standardized instrument to collect evidence regarding a third-party's model provenance, training data lineage, and safety alignment thresholds. This stage ensures that the algorithmic supply chain is transparent before technical integration begins.
The completed VDDQ feeds directly into the residual risk scoring and model risk tiering processes, informing the final conformity assessment. Procurement teams use the questionnaire's findings to negotiate intellectual property indemnification clauses and define rollback procedures in the master service agreement, embedding governance into the legal architecture of the vendor relationship.
Enabling Efficiency, Speed & Accuracy
Intelligent Analysis, Decision & Execution
We build AI systems for teams that need search across company data, workflow automation across tools, or AI features inside products and internal software.
Talk to Us
Search across company data
Give teams answers from docs, tickets, runbooks, and product data with sources and permissions.
Useful when people spend too long searching or get different answers from different systems.

Automate internal workflows
Use AI to route work, draft outputs, trigger actions, and keep approvals and logs in place.
Useful when repetitive work moves across multiple tools and teams.

Add AI to products and internal tools
Build assistants, guided actions, or decision support into the software your team or customers already use.
Useful when AI needs to be part of the product, not a separate tool.
Frequently Asked Questions
Essential questions procurement and risk management teams must ask to evaluate third-party AI providers against security, privacy, and ethical standards before integration.
A Vendor Due Diligence Questionnaire (VDDQ) for AI is a standardized assessment instrument designed to systematically evaluate a third-party provider's algorithmic practices, data governance posture, and security controls before procurement. Unlike generic IT questionnaires, an AI-specific VDDQ probes the unique risks of machine learning supply chains, including training data lineage, model provenance, hallucination rate benchmarks, and adversarial robustness. The questionnaire typically maps to regulatory frameworks such as the EU AI Act, requiring vendors to disclose their high-risk classification status, conformity assessment results, and human oversight mechanisms. Effective VDDQs produce quantifiable outputs like a residual risk score that informs the model risk tiering decision, ensuring the procurement team understands whether the vendor's system requires enhanced monitoring, an escrow agreement, or a kill switch mechanism.
Related Terms
Master the interconnected concepts that form the foundation of third-party AI governance. Each card below unpacks a critical term essential for evaluating, contracting, and monitoring AI vendors.
AI Bill of Materials (AIBOM)
A formal, structured inventory of all software, data, and model components used to construct an AI system. An AIBOM is the supply chain transparency artifact that makes a due diligence questionnaire actionable.
- Key Elements: Model weights, training datasets, open-source libraries, and API dependencies
- Regulatory Driver: Mirrors the SBOM mandate in software; critical for EU AI Act compliance
- Procurement Use: Enables a direct comparison between what a vendor declares in a questionnaire and their actual technical composition
Model Risk Tiering
A framework for classifying third-party AI models based on their potential for harm to determine the intensity of required oversight. This directly informs how deep your due diligence questionnaire must go.
- High-Risk Triggers: Biometric categorization, critical infrastructure control, or access to sensitive personal data
- Tiered Questionnaires: Low-risk vendors receive a lightweight assessment; high-risk vendors trigger a full-scale audit
- Output: A risk classification that dictates contract terms, monitoring frequency, and required transparency artifacts
Residual Risk Scoring
The quantification of risk that remains after internal controls and vendor mitigations are applied to a third-party AI system. This is the ultimate output metric of a completed due diligence questionnaire.
- Formula: Inherent Risk Rating minus the effectiveness of verified compensating controls
- Questionnaire Role: Each section maps to a control that reduces a specific risk vector
- Decision Gate: A residual score above the organization's risk appetite threshold should block procurement or mandate additional contractual guarantees
Conformity Assessment
The process of verifying that an AI system meets the essential requirements of a specific regulation, such as the EU AI Act. The vendor due diligence questionnaire is the primary evidence-gathering instrument for this assessment.
- Internal vs. Third-Party: High-risk systems require an external notified body; lower-risk systems allow self-assessment
- Documentation Nexus: The questionnaire feeds directly into the technical documentation file required by regulators
- Continuous Obligation: Conformity is not a one-time event; the questionnaire must be re-issued upon substantial modifications to the vendor's model
Training Data Lineage
The documented end-to-end origin, movement, and transformation history of all datasets used to train a model. This is one of the most critical and difficult sections of any vendor due diligence questionnaire.
- Provenance Questions: Where did the data originate? Was it scraped, licensed, or synthetically generated?
- IP Risk: Undocumented lineage is the primary vector for copyright infringement claims
- Privacy Link: Lineage records must demonstrate that consent was valid at the point of collection and covers the specific AI training purpose
Red-Teaming Report
A document detailing the findings from an adversarial simulation designed to uncover safety and security flaws in an AI system. A mature vendor will proactively offer this as evidence alongside their completed questionnaire.
- Attack Vectors Tested: Prompt injection, jailbreak attempts, bias elicitation, and data extraction
- Independent Validation: Reports from accredited external red teams carry significantly more weight than internal assessments
- Questionnaire Integration: Ask for the red-teaming report as an attachment to the security section; its absence is a critical red flag

About the author
Prasad Kumkar
CEO & MD, Inference Systems
Prasad Kumkar is the CEO & MD of Inference Systems and writes about AI systems architecture, LLM infrastructure, model serving, evaluation, and production deployment. Over 5+ years, he has worked across computer vision models, L5 autonomous vehicle systems, and LLM research, with a focus on taking complex AI ideas into real-world engineering systems.
His work and writing cover AI systems, large language models, AI agents, multimodal systems, autonomous systems, inference optimization, RAG, evaluation, and production AI engineering.
Partnered with leading AI, data, and software stack.
How We Work
Custom AI workflows for your Business
One-fit-all AI don't work for modern businesses. At Inferensys, we aim to understand your business & custom requirements; which we use to define most efficient agentic workflows, the data, and the tools for your business.
01
Review the use case
We understand the task, the users, and where AI can actually help.
Read more02
Pick the right approach
We define what needs search, automation, or product integration.
Read more03
Build the first useful version
We implement the part that proves the value first.
Read more04
Improve from there
We add the checks and visibility needed to keep it useful.
Read moreThe first call is a practical review of your use case and the right next step.
Talk to Us