OneTrust Third Party Risk Management

OneTrust Third-Party Risk Management provides visibility into third-party risks and offers rich risk data. It streamlines vendor assessments to ensure compliance with industry regulations to proactively manage third-party risks. More information can be found at the OneTrust site.

Integration Method: API

Tables: Entity Management (3004)

This integration supports the following events.

This integration supports the following versions.

Prerequisites

• The user should have access to the OneTrust Third-Party Risk Management platform with administrative privileges to create client credentials.

• The user should have access to the DataBee console.

Configuration Overview

1. Create client credentials from OneTrust Third-Party Risk Management application.

2. Add OneTrust Third-Party Risk Management in the Databee console with below parameter.

   DataBee Feed Parameter	OneTrust Third-Party Risk Management Parameter
   Client Key	Client Id
   Client Secret	Client Secret
   Token URL <Instance>	Instance Id
   API Base URL <Instance>	Instance Id

OneTrust Third-Party Risk Management Configuration

API Key Configuration

1. Log in to the OneTrust Portal, then click the gear icon in the upper right-hand corner to access Global Settings.
     

2. On the Settings menu, select Access Management > Client Credentials.
   Save the instance Id from the URL bar as mentioned below.

   
   

3. Click the Add button. The Client Credentials section of the “Add Client Credential” screen appears.
    

4. On “Add Client Credentials” screen perform the following steps: 

   • Name: enter a name for the client credential. 

   • Description (Optional): enter a description for the client credential.

   • Access Token Lifetime: select the amount of time that should pass before the access token expires

   • IP restrictions: if enabling this, contact your DataBee support team for the IP address range where the API requests will come from.

Click the Next button. 

5. Select the following API scopes and click CREATE.

   • Control

   • Third Party Risk Management: VRM, VRM_READ

   • Risk: RISK, RISK_READ

   • Object Manager: OBJECT_MANAGER, OBJECT_MANAGER.READ

   • Inventory: INVENTORY, INVENTORY_READ

   • Integration: INTEGRATIONS, INTEGRATION_JWT

     

     

     

     

     

     

6. The Client ID and Client Secret section appears. Click the Download button. A text file containing the Client ID and Client Secret details will be downloaded to your local system.

   
   
   

DataBee Configuration

1. Login to the DataBee UI, navigate to Data > Data Feeds and click the Add New Data Feed button.
    

2. Search for the OneTrust Third Party Management and click it as shown below.
    

3. Click on the API Ingest option for collection method.
    

4. Enter feed contact information and click Next.
    

5. In the configuration page, enter the following

   • Authentication Method: OAuth2

   • Client Key: enter above generated Client Id.  

   • Client Secret: enter above generated Client secret.

   • Token URL: replace <instance> by your instance id from the URL as mentioned previously.

   • API Base URL: replace <instance> value with your instance id.

   • Event Types: preselected for all the event types that integration pulls.
      

6. Click on Submit.

Troubleshooting Tips

• Ensure user has correct permission to generate API Key value from OneTrust Third Party Management console.

• Ensure that client credentials are correctly added in the DataBee console.