You can choose to use AI to summarize your vendor questionnaire responses. The AI powered summarizations are not meant to replace the analysis of your questionnaires, but to assist in understanding the information more efficiently.
To learn how to send or upload vendor security questionnaires, go to Vendor Security Questionnaire.
Before diving in
AI summarization for questionnaire responses is only available for TPRM users.
You can summarize vendor questionnaires that have been sent through Drata and uploaded into Drata.
Only Admins can enable AI summary for questionnaires. If you are not an admin, you cannot enable or disable AI in Drata. If an admin did not enable AI, you will not have AI enabled in Drata.
Enable or disable AI for questionnaire summary
You can enable AI summarization for vendor questionnaire responses in two ways: enabling through the Vendors or Settings page.
Enable through Vendors page
Go to the Vendors page and and select the desired vendor you would like a questionnaire AI summary for.
On the specific vendor’s profile, select the ‘Security reviews’ tab and select the View button that correlates with the questionnaire row.
Select Get started.
Select ‘Opt in to AI’ to use AI to summarize your questionnaire responses. This also enables other personnel who have access to Vendors to summarize their questionnaire responses.
Once you opt in to AI, you can always opt out from the Settings page.
Enable through Settings
Go to your Settings page. Under ‘Company Settings’, select ‘AI Settings’.
Select the AI option and save your choice.
Disable through Settings
Go to your Settings page. Under ‘Company Settings’, select ‘AI Settings’.
De-select the AI option and save your choice.
If you disable AI, your AI summaries will be hidden and no additional AI summaries will be generated.
Summarize your questionnaire with AI
Note: Ensure that your admin has enabled AI in Drata.
Go to the Vendors page and select the desired vendor you would like a questionnaire AI summary for.
On the vendor's profile, select the ‘Security reviews’ tab, then select the View button corresponding to the questionnaire you would like to summarize the responses of.
Uploaded questionnaires cannot be viewed in the application, but can be summarized.
The AI summary can take up to 30 seconds to generate and provides the following information:
Overview: Can include general company details, compliance frameworks mentioned, and a high-level breakdown of the security practices and tools the vendor uses.
Callouts: Can include questions that were unanswered, incidents or security breaches, and tools or practices the vendor is missing.
Attachments: Can include files that were attached to answer a question.
Note: The questionnaire does not summarize the content within the attachments and file.
Error notification
An error notification appears when the questionnaire could not be summarized with AI. Questionnaires might not be able to summarize for the following reasons.
The questionnaire (including both questions and responses) were less than 450 words or greater than 5,000 words.
The questionnaire does not have relevant security and compliance information.
The questionnaire is not in a question and answer format.
Feedback summary
You can provide feedback by rating the summary generated by our AI tool with a thumbs up and down. This feedback does not regenerate or customize the current AI summary.
Remove summary
You can remove the summary, by selecting the "X" button at the top-right corner of the summary.
A notification appears to confirm that the questionnaire summary has been removed.
Once you do that, you can always select "Generate AI summary" in the Action menu to view the summary again.