← Back to Triage Overview
Coverage Matrix
Vendor-policy coverage map — find gaps before they become violations
Coverage: 78% of vendor-policy pairs have active coverage
|12 gaps identified, 4 involving sensitive data (PII/PHI/PCI)
|↑ 2 new gaps since last windowVendor × Policy Coverage — sorted by risk (most gaps + highest sensitivity first)
| Vendor | Data Residency 85% compliant | Vendor Allow List 75% compliant | PII Controls 62% compliant | Internal Access 92% compliant |
|---|---|---|---|---|
PIIPHI | — | |||
CloudAnalyticsApproved PII | 2 | 1 | — | |
— | — | |||
legacy-vendor.netDeprecated | — | 1 | — | |
payment-processor.comUnder Review PCI | — | |||
analytics-hub.ioApproved PII | — | |||
stripe.comApproved PCI | — | |||
auth-provider.comMonitored |
Compliant
Violation
Not Covered
Not Covered (sensitive data)
—N/A
Coverage Gaps — sorted by risk level (sensitivity × flow volume)
12 gaps total| Vendor | Missing Policy | Data Sensitivity | Flows Observed | Risk Level | Action |
|---|---|---|---|---|---|
| ai-metrics.io | PII Controls | PIIPHI | 312 | High | Add to Policy → |
| ai-metrics.io | Data Residency | PIIPHI | 312 | High | Add to Policy → |
| ai-metrics.io | Vendor Allow List | PIIPHI | 312 | High | Add to Policy → |
| payment-processor.com | Vendor Allow List | PCI | 89 | High | Add to Policy → |
| analytics-hub.io | PII Controls | PII | 147 | Medium | Add to Policy → |
| cdn-provider.net | Data Residency | — | 54 | Medium | Add to Policy → |
| cdn-provider.net | Vendor Allow List | — | 54 | Medium | Add to Policy → |
| legacy-vendor.net | PII Controls | — | 12 | Low | Add to Policy → |