This site provides ForgeRock’s suppliers and partners ("Partners") with up-to-date guidelines on ForgeRock Procurement.
Please note that the legal documents referred to below govern the relationship between each Partner and ForgeRock. If you have any questions, we advise you to refer this page to your legal department.
ForgeRock's Expectations
ForgeRock expects its Partners to transition to online privacy terms to simplify future amendments of these terms as and when privacy law dictates.
Our online privacy terms include a process for notifying Partners of mandatory changes to these terms. We encourage Partners to sign up to this process.
Key Privacy Law Concepts
Do you need to refresh your knowledge of key privacy law concepts? If so, please click here.
ForgeRock Partner Service Terms
ForgeRock separates its Partners into two broad categories:
Marketing Services Partners
These are Partners who provide personal data to ForgeRock via services including data brokerage, content syndication, and marketing events.
ForgeRock's Expectation:
Partners should incorporate the Supplementary Privacy Addendum into Partner’s terms and conditions.
Supplementary Privacy Addendum
Click below to access the incorporating clause.
Cloud/Technology Service Partners
These are Partners who access ForgeRock’s personal data to provide services to ForgeRock:
ForgeRock's Expectation:
Partners should incorporate the Data Processing Addendum into Partner’s terms and conditions.
Click below to access the incorporating clause.
ForgeRock Partner Risk Assessment
If deemed appropriate by ForgeRock, a prospective or current Partner will be sent a confidential Third-Party Risk Assessment questionnaire ("TPRA") to establish security & privacy credentials.
ForgeRock Partner Vetting
As you would expect, ForgeRock shall comply with its global legal obligations by vetting each Partner’s corporate data for anti-bribery, anti-corruption, anti-money laundering, and anti-terrorism laws on an ongoing basis.