Leno TPRM

Third-party risk management compliant with DORA and EBA Guidelines

Our software for Third Party Risk and Outsourcing Management enables organizations to efficiently, transparently, and compliantly initiate, manage, and terminate outsourcing arrangements, ICT services, and subcontracting—fully aligned with DORA, EBA guidelines, MaRisk, and BAIT. Leveraging AI and a high degree of automation, our platform ensures excellent usability, data quality, and auditability across the entire third-party risk lifecycle.

The use of AI and a high degree of automation ensure excellent usability, data quality and audit security.

Get a Demo
Main functions
Onboard services and service providers
Go to solution
Perform risk assessment & scenario analysis
Go to solution
Conduct Due diligence & contract review
Go to solution
Create exit strategies
Go to solution
Managing Provider
Go to solution
Prepare outsourcing & information registers
Go to solution
Overview of Functionalities

Onboard services and service providers

With Leno TPRM, you can efficiently and compliantly create and classify service providers and services across the entire supply chain using AI. This gives you a clear overview of all third-party dependencies and service providers at any time.

Intelligent service capture
Manual or AI-supported entry of service names and descriptions for maximum flexibility.
Go to solution
AI-supported classification
Legally compliant classification in accordance with DORA, EBA Guidelines, and MaRisk using intelligent algorithms.
Go to solution
Automatic mapping
Mapping of services to business functions for precise determination of criticality.
Go to solution

Perform risk assessment & scenario analysis

With Leno TPRM, you can determine the criticality of ICT services and the materiality of outsourcing arrangements in an audit-proof, user-friendly, and automated manner. Leno TPRM provides a compliance-ready risk analysis framework to identify, assess, and mitigate risks.

Assess risks
Systematically assess relevant risks based on defined criteria and scales.
Go to solution
Define measures & manage residual risks
Derive appropriate mitigation measures and structure the assessment of remaining residual risks.
Go to solution
Unified scoring model
Use a consistent scoring model for objective risk assessment.
Go to solution

Conduct Due diligence & contract review

Leno TPRM enables risk-based due diligence and regulatory-compliant contract reviews. AI-powered analysis supports the efficient review of service provider contracts and ensures compliance with regulatory and security requirements.

Risk-based service provider assessment
Assess the suitability of service providers using predefined, compliance-ready criteria.
Go to solution
AI-based contract analysis
Automatically review service provider contracts for compliance, security, and risk criteria.
Go to solution
Obtain required approvals
Submit forms and obtain approvals in an audit-proof, efficient, and user-friendly manner.
Go to solution

Create exit strategies

Leno TPRM supports the structured planning and implementation of exit strategies for services and service providers. This ensures that outsourcing arrangements can be terminated or transitioned in a controlled, low-risk, and regulatory-compliant manner.

Evaluate response options
Assess available courses of action and select preferred approaches for planned and unplanned terminations.
Go to solution
Define exit plans
Plan concrete tasks, activities, and transition measures to ensure business continuity.
Go to solution
Assess dependencies and risks
Identify and evaluate dependencies and risks associated with termination.
Go to solution

Managing Provider

Leno TPRM supports continuous and structured monitoring of outsourced services and service providers. Through regular reports, KPIs, and KRIs, as well as audit-proof documentation, you maintain full visibility over risks, performance, and regulatory requirements at all times.

Create monitoring reports
Generate periodic reports on outsourced services and service providers.
Go to solution
Monitor KPIs & KRIs
Track performance and risk indicators (KPIs & KRIs) in a structured and transparent way.
Go to solution
Attach & archive documents
Store reports and evidence related to KPIs and KRIs and maintain an audit-proof historical record.
Go to solution

Prepare outsourcing & information registers

With Leno TPRM, you can fulfill your reporting obligations at the push of a button. Information and outsourcing registers as well as regulatory reports can be created as of a specific date, in compliant formats, and ready for export—including the reporting of outsourcing arrangements in accordance with the notification regulation.

Review automatically created registers
Show automatically generated date-specific information and outsourcing registers with a single click.
Go to solution
Format-compliant export
Export registers and reports in the required formats with one click.
Go to solution
XML export for Anzeigeverordnung
Report outsourcing arrangements in accordance with the notification regulation efficiently and correctly via XML export.
Go to solution
Matching solutions from Leno TPRM
Outsourcing management in line with EBA guidelines
Go to solution
DORA-compliant contracts
Go to solution
Efficient Vendor Management
Go to solution
Transparent sub-outsourcings
Go to solution
Automatically Generate the Register of Information and vendor respository
Go to solution
Effective Third-Party ICT Risk Management
Go to solution

Learn more about this module

Learn how Leno helps you manage your business processes, risks, and compliance requirements efficiently and transparently.

What is Leno TPRM and how does it support outsourcing management?

Leno TPRM is a specialized solution for Third Party Risk Management (TPRM).

Leno TPRM is a specialized solution for Third Party Risk Management (TPRM). It helps financial institutions manage outsourcing arrangements, ICT services, and subcontracting in a compliant and auditable manner in line with DORA, MaRisk, and EBA guidelines.

How does Leno TPRM support DORA compliance?

Leno TPRM ensures that all outsourcing management processes.

Leno TPRM ensures that all outsourcing management processes - from identification and risk assessment to exit strategies - are fully aligned with DORA requirements. The platform also enables automated, one-click generation of the information register.

How does the AI-based contract review work?

Our integrated AI-powered contract analysis automatically reviews vendor and service provider contracts for mandatory regulatory requirements.

Our integrated AI-powered contract analysis automatically reviews vendor and service provider contracts for mandatory regulatory requirements. It identifies gaps against EBA and DORA standards and delivers structured compliance reports, significantly reducing manual review effort.

Can complex subcontracting and outsourcing chains be mapped?

Yes. Leno TPRM provides full transparency across complex subcontracting structures and multi-level outsourcing chains.

Yes. Leno TPRM provides full transparency across complex subcontracting structures and multi-level outsourcing chains, enabling organizations to assess cumulative third-party risks across the entire supply chain.

What are the key features of the Leno TPRM module?

Core features include AI-powered classification, automated materiality assessments, due diligence workflows, a digital outsourcing register, and continuous risk monitoring through KPI and KRI tracking.

Core features include AI-powered classification, automated materiality assessments, due diligence workflows, a digital outsourcing register, and continuous risk monitoring through KPI and KRI tracking.

Who should use Leno TPRM?

Leno TPRM is ideal for regulated organizations such as banks, insurance companies, and financial service providers, as well as ICT third-party providers.

Leno TPRM is ideal for regulated organizations such as banks, insurance companies, and financial service providers, as well as ICT third-party providers that must comply with regulatory requirements like DORA, EBA guidelines, MaRisk, and AnzV, while scaling their risk management efficiently.

What differentiates Leno TPRM from traditional GRC tools?

Leno TPRM stands out through a high degree of automation, audit-proof no-code workflows, and an intuitive user interface.

Leno TPRM stands out through a high degree of automation, audit-proof no-code workflows, and an intuitive user interface. Customers also benefit from our deep regulatory expertise during implementation and rollout.

How does implementation and data migration work with Leno TPRM?

Our experts support you throughout the entire TPRM implementation process -from requirements analysis to user training.

Our experts support you throughout the entire TPRM implementation process -from requirements analysis to user training. We actively assist with data migration and the configuration of individual approval and governance workflows.

How does Leno TPRM support reporting?

Leno TPRM offers automated, configurable reporting dashboards that visualize the real-time status of all modules.

Leno TPRM offers automated, configurable reporting dashboards that visualize the real-time status of all modules. With one click, you can generate audit-ready reports for management or supervisory authorities, significantly reducing audit preparation time.

Can I try Leno TPRM or request a demo?

Yes. You can request a free live demo at any time.

Yes. You can request a free live demo at any time. We will show you how Leno TPRM helps you save time, reduce manual effort, and increase compliance assurance for upcoming regulatory audits.

Get to know Leno

Book a demo
Book a meeting today to discover Leno.

How can we help? Contact us.

Visit our Trust Center
CompanyCareerInsight
Contact us
© 2026 LeanMind. All rights reserved.