Compliance States in Detail

Each compliance state serves a specific purpose in the record lifecycle. This article explains the conditions and behaviors associated with every state.

Draft

Records in Draft are placeholders. They do not trigger notifications, do not appear in compliance dashboards, and are excluded from reports. Use Draft when preparing a project before vendor onboarding begins.

To activate a draft, change its status to Awaiting COI from the record detail page or via bulk operations.

Awaiting COI

The default state for newly added vendors. Inori sends the vendor an automatic email requesting their certificate. Follow-up reminders are sent at intervals you configure in Settings > Notifications.

Under Review

Set automatically when the AI analysis flags items that require human judgment — for example, when a policy endorsement cannot be confirmed from the document alone. Open the record, review each flagged item, and click Approve or Reject to resolve.

Compliant

All project requirements are satisfied by the current certificate. Compliant records are monitored for expiration — Inori automatically moves them to Expired when the certificate date passes.

Non-Compliant

One or more requirements are not met. The record detail page shows a line-by-line breakdown of each failed check. You can request a new certificate from the vendor directly from this screen.

Waived

Set manually when your organization exempts a vendor from requirements. You must provide a waiver reason and optionally set a waiver expiration date. Waived records are flagged in compliance reports for audit visibility.

Expired

Set automatically when a certificate's expiration date passes. Inori sends pre-expiration reminders at 60, 30, and 14 days by default. Once expired, the vendor must upload a renewed certificate.

Archived

Archived records are removed from active compliance tracking. Use this when a vendor relationship ends. Archived records remain searchable and can be restored if needed.