The term "Unapproved Supplier" refers to a company or individual providing goods or services to an organization without having undergone the formal internal approval processes required by that organization's procurement policies and procedures.

Why is Using Unapproved Suppliers a Problem?

1. Compliance Violations:

   • Internal Policies: Violates the company's own rules for sourcing, purchasing, and vendor management.
   • Regulatory Requirements: May breach industry-specific regulations (e.g., FDA, FAA, SOX, GDPR) mandating approved vendor lists or specific due diligence.
   • Contractual Obligations: Often breaches agreements with approved suppliers who have exclusive rights or volume commitments.

2. Increased Financial Risk:

   • Lack of Negotiated Pricing: Unapproved suppliers rarely benefit from negotiated volume discounts or favorable terms.
   • Hidden Costs: Potential for unexpected fees, poor quality leading to waste/rework, or lack of warranty support.
   • Payment Issues: May not be set up in the company's payment systems, causing delays or requiring manual (and potentially risky) workarounds.
   • Fraud: Higher risk of dealing with fraudulent entities or individuals.

3. Operational & Quality Risks:

   • Inconsistent Quality: No established quality control or assurance processes.
   • Supply Chain Disruption: Unreliable delivery schedules, lack of contingency planning, or inability to scale.
   • Lack of Technical Expertise: May not have the required skills, certifications, or capabilities.
   • Safety & Security: Higher risk of non-compliance with safety standards or data security protocols.

4. Reputational Damage:

   • Poor Quality Products/Services: Can harm the company's brand and customer satisfaction.
   • Ethical Concerns: Association with suppliers using unethical labor practices or environmental violations.
   • Scandals: Involvement in supplier-related controversies (e.g., counterfeit goods, safety failures).

5. Legal & Contractual Risks:

   • Invalid Contracts: Contracts signed without proper authorization may be unenforceable.
   • Intellectual Property Theft: Higher risk of IP infringement or theft by an unvetted supplier.
   • Liability: Increased exposure to liability if the supplier causes harm (e.g., defective product, data breach).

How Do Unapproved Suppliers Typically Arise?

• "Shadow Procurement": Employees bypassing the purchasing department to buy directly from vendors (e.g., using personal credit cards, petty cash).
• Urgent Situations: Managers expediting purchases without going through formal approval channels due to perceived time pressures.
• Lack of Awareness: Employees unfamiliar with procurement policies or the approval process.
• Collusion: Employees intentionally using unapproved suppliers for personal gain (kickbacks, favors).
• Gaps in Controls: Weak oversight or enforcement of existing supplier approval processes.
• Mergers/Acquisitions: Integrating disparate supplier lists without proper vetting.

How to Prevent and Manage Unapproved Suppliers

1. Clear Policies & Procedures: Establish and communicate robust procurement policies, including mandatory supplier approval steps.
2. Centralized Vendor Management: Maintain a single, approved vendor list (AVL) with clear criteria for inclusion and ongoing monitoring.
3. Segregation of Duties: Ensure purchasing, receiving, and invoice approval are handled by different individuals.
4. Training & Communication: Regularly train employees on procurement policies, the risks of unapproved sourcing, and how to report concerns.
5. Strong Controls:
   • Purchase Order (PO) Mandate: Require POs for all purchases above a certain threshold.
   • System Integration: Use ERP or procurement software that enforces approval workflows and blocks purchases from non-approved suppliers.
   • Three-Way Matching: Enforce matching of PO, receiving report, and invoice before payment.
6. Regular Audits: Conduct internal audits of purchasing activities to identify and investigate unapproved supplier usage.
7. Whistleblower Mechanisms: Provide safe, confidential channels for employees to report suspected violations.
8. Consequences: Implement clear disciplinary actions for employees found using unapproved suppliers without valid justification.

What to Do If You Discover an Unapproved Supplier

1. Investigate Immediately: Determine how, why, and by whom the supplier was used. Was it a one-time mistake or a pattern?
2. Assess Risk: Evaluate the potential impact (financial, quality, legal, reputational) of the goods/services received.
3. Cease Usage: Stop placing orders with the unapproved supplier immediately.
4. Review Contracts: Determine if any contracts exist and their validity/risks.
5. Evaluate the Supplier: Consider if the supplier could be approved through the formal process (if they meet criteria).
6. Corrective Actions:
   • For Approved Use: Initiate the formal approval process if appropriate.
   • For Non-Approved Use: Implement stricter controls, retrain involved employees, update policies if gaps were found.
7. Disciplinary Action: Apply appropriate consequences based on policy and severity (e.g., warning, training, termination).
8. Communicate (if necessary): Inform relevant stakeholders (e.g., finance, legal, senior management) about the issue and resolution.

In essence, "The Unapproved Supplier" represents a breakdown in governance, control, and risk management within an organization's supply chain. Addressing it proactively through strong policies, controls, and training is crucial for operational integrity, financial stability, and regulatory compliance.