Supplier due diligence
Japan Procurement Vendor Onboarding Checklist
Use this checklist to add Japanese public-record checks to procurement onboarding without turning every supplier review into a full investigation.
Key takeaways
- Procurement checks should scale with supplier criticality.
- Identity verification should happen before risk screening.
- Public enforcement and public-risk records are useful first-pass evidence.
- Documented source URLs make approvals easier to defend.
Practical workflow
- 1Assign the supplier to a risk tier based on spend, criticality, data access, and product or service risk.
- 2Collect Japanese name, English name, address, Corporate Number, website, and contract entity.
- 3Search RegBase for the company and related enforcement or public-risk records.
- 4Review any matches by date, regulator, law, severity, and relationship relevance.
- 5Store the evidence report and define renewal triggers.
Build a lightweight public-record layer
A procurement team does not need a full investigative report for every low-risk vendor. It does need a repeatable public-record layer that catches obvious identity and enforcement issues before onboarding.
The most useful checklist is simple enough for frequent use and specific enough to create an audit trail.
- Entity identity and Corporate Number
- Registered address and status context
- Administrative actions and public enforcement records
- Public-risk disclosures relevant to the supplier's role
Scale the review by risk tier
Low-risk office suppliers may only require identity and public-record screening. Strategic manufacturers, regulated service providers, and data-processing vendors may require deeper review, contract controls, and periodic refresh.
Important limitation
RegBase supports public-source screening and evidence collection. It is not a credit report, sanctions result, legal opinion, or final due-diligence conclusion.