Vendorpedia (a OneTrust tool) is an internal only tool that functions as:


AnswerBase is an internal only library of question and answer pairs related to GitLab, Inc. and the GitLab solutions. AnswerBase is a living library that is updated and expanded by questionnaires from our prospects and customers. These questionnaires are related to efforts such as RFx requests, third party risk assessments, and supplier due diligence requests. AnswerBase is designed to serve both Field Security and all other team members.

Request for Proposal (RFx and RFP) Completion

Vendorpedia will be used to collaborate cross-departmentally to alleviate the painpoints for the Field Team in completion of RFPs. SME’s from relevant departments will have access to Vendorpedia to maintain their own department specific answer libraries, and they will be tagged on answers that need to be added.

Access and Instructions

Access to Vendorpedia for AnswerBase purposes is a baseline entitlement for all GitLab team members. Instructions for accessing AnswerBase can be found here.

Team members can access Vendorpedia for RFP completion purposes in the same manner as shown here. These team members will be assigned permissions beyond the baseline entitlement, and they will be able to access additional functionality within Vendorpedia.

Contact the Field Security Team

  • Email
  • Slack
    • Feel free to tag us with @field-security
    • The #sec-fieldsecurity, #sec-assurance, #security-department slack channels are the best place for questions relating to our team (please add the above tag)
Last modified September 6, 2023: Replace taps with spaces (69f17a79)