1. Why and How We Collect Information
Our primary purpose in collecting personal information is to provide you with CORL’s Vendor
Security Risk Management services. You can view public areas of the VSRM website without the need to enter personal information. However, if you do provide your personal information (e.g. by submitting a request for more information), you are no longer anonymous. If your organization signs up for CORL’s Vendor Security Risk Management service, we will require
your organization to provide contact and identity information about users (i.e. you). Some information is required and some information is optional. Your organization has the option to decline to provide us with required information; however, if this is the case, we will not be able to provide your organization with CORL’s Vendor Security Risk Management service.
As we continually add to our services over time, we reserve the right to require additional personal information.