ABCDEFGHIJKLMNOPQRSTUVWXYZAA
1
IDTypeCategoryRequirement/questionSupported by the vendor? O= Out-of-the-box, C= customization, F= future roadmap, N= no supportDetails
2
A-1Non-functional requirementTechnologyProvide an overview of your technical infrastructure. Include information covering technologies used, technology architecture, hosting, backups, availability, scalability, monitoring, and security as well as any additional relevant information.
3
A-2Non-functional requirementTechnologyProvide information on whether your software solution be integrated with our existing software (as specified in the previous section), how difficult it is to integrate with your software and what type of integrations you support out-of-the-box.
4
A-3Non-functional requirementTechnologyProvide your service guaranteed uptime.
5
A-4Non-functional requirementTechnologyLet us know what happens in case of downtime, for example, how fast you start troubleshooting.
6
A-5Non-functional requirementTechnologyProvide your response times and SLAs.
7
A-6Non-functional requirementTechnologyWhat is your RPO (Recovery Point Objective) time?
8
A-7Non-functional requirementTechnologyWhat is your RTO (Recovery Time Objective) time?
9
A-8Non-functional requirementTechnologyDoes your company have information security risk insurance?
10
A-9Non-functional requirementTechnologyWhat security certificates do you have?
11
A-10Non-functional requirementTechnologyProvide a link to your documentation and API reference (if your software is API-based).
12
A-11Non-functional requirementTechnologyProvide SDKs links or information on the SDKs offered.
13
A-12Non-functional requirementTechnologyProvide a list of webhooks offered, if any.
14
A-13Non-functional requirementTechnologyExplain the hosting options and details, including who is your cloud provider (if you host in the cloud)?
15
A-14Non-functional requirementTechnologyList any monitoring and debugging tools, including logs you can make available to our developers, that you provide.
16
A-15Non-functional requirementTechnologyIs a sandbox account provided? If so, explain the limits of the sandbox.
17
A-16Non-functional requirementTechnologyExplain how you can help with the integration. Mention, whether you can provide developers to integrate your platform for us.
18
A-17Non-functional requirementTechnologyWhat are the available server locations?
19
A-18Non-functional requirementTechnologyIs your solution multi-tenant or do you offer dedicated clusters?
20
A-19Non-functional requirementTechnologyWhat is your Disaster Recovery strategy?
21
A-20Non-functional requirementTechnologyDescribe your incident management process.
22
A-21Non-functional requirementTechnologyWhat is your notification methodology for planned and unplanned outages?
23
A-22Non-functional requirementTechnologyHow does your solution adjust for peak loads?
24
A-23Non-functional requirementTechnologyWhat is the average time and effort required for full implementation? Break down the implementation phases.
25
A-24Non-functional requirementTechnologyDescribe all types of notifications about outages or other issues that can be subscribed to (for example, if there is a failed redemption, notify X email address) that can help the developers’ team to troubleshoot issues.
26
A-25Non-functional requirementTechnologyCan customer and product data can be imported and/or can CRM/PIM systems be integrated for real-time data synchronization? Specify.
27
A-26Non-functional requirementSupportWhat are the types/forms of support you offer?
28
A-27Non-functional requirementSupportDo you offer user onboarding? Specify.
29
A-28Non-functional requirementSupportDo you offer user training? Specify.
30
A-29Non-functional requirementSupportWhich languages can you provide support in?
31
A-30Non-functional requirementSupportWhich solution partners do you work with?
32
A-31Non-functional requirementLegalAre you PCI DSS compliant?
33
A-32Non-functional requirementLegalAre you GDPR compliant?
34
A-33Non-functional requirementLegalAre you CCPA compliant?
35
A-34Non-functional requirementSecurityDo you offer DFA (double-factor authentication)?
36
A-35Non-functional requirementSecurityDo you provide data encryption? Specify how.
37
A-36Non-functional requirementSecurityHow do you collect and store the data? Where do you store the data? Specify.
38
A-37Non-functional requirementSecurityWhat controls or procedures are in place to manage IT risk (WAF, DDoS protection, port / ip restriction)?
39
A-38Non-functional requirementSecurityAre penetration tests conducted regularly and can the reports be made available upon request?
40
A-39Non-functional requirementSecurityDo you have methods for facilitating SAR (subject access requests) and data removal? Which ones?
41
A-40Non-functional requirementSecurityDescribe any other security and privacy features you provide.
42
A-41Non-functional requirementSecurityWhat 3rd party security/privacy certifications have your organization completed?
43
A-42Non-functional requirementScalabilityCan you support multiple languages?
44
A-43Non-functional requirementScalabilityCan you support multiple regions?
45
A-44Non-functional requirementScalabilityCan you support multiple currencies?
46
A-45Non-functional requirementScalabilityCan multiple brands be managed with one account?
47
A-46Non-functional requirementScalabilityDescribe any other scalability-supporting features you provide.
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100