Vendor Management

Manage which AI vendors can access your MLS data. Review access requests, check trust scores, assign policies, and control the full vendor lifecycle.

Access lifecycle

pending ──► approved ──► suspended ──► approved (reinstate)
   │                         │
   └──► revoked              └──► revoked

Reviewing vendor requests

When a vendor requests access, you can view their profile including:

• -Company info: name, URL, contact details
• -Product details: product name, description, URL
• -Data usage declaration: how they intend to use the data
• -Trust score: from compliance certificate or latest scan (5 dimensions)
• -Verification status: whether the vendor has been verified

Trust score dimensions

Vendor trust scores are based on 5 weighted dimensions. Use these to inform your approval decision:

Vendor actions

Manage vendors via the API:

POST /api/mls/vendors

// Approve with default policy
{ "access_id": "uuid", "action": "approve" }

// Approve with specific policy
{ "access_id": "uuid", "action": "approve", "policy_id": "uuid" }

// Reject (requires reason)
{ "access_id": "uuid", "action": "reject", "reason": "Insufficient trust score" }

// Suspend temporarily
{ "access_id": "uuid", "action": "suspend" }

// Revoke permanently (requires reason)
{ "access_id": "uuid", "action": "revoke", "reason": "Policy violation detected" }

// Reinstate a suspended vendor
{ "access_id": "uuid", "action": "reinstate" }

Listing vendors

GET /api/mls/vendors
GET /api/mls/vendors?status=pending
GET /api/mls/vendors?status=approved

Returns vendor profiles with trust scores, 30-day query counts, revenue generated, and last activity timestamps.