<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=271231627262368&amp;ev=PageView&amp;noscript=1">

The ability to effectively track, monitor and mitigate any risks associated with both contracts and vendors is the key to business continuity.

We’ve previously written about a number of elements that help to reduce contract issues and risk. There are plenty of moving parts such as:

Gatekeeper’s comprehensive reporting suite enables customers to track all aspects of their contracts and vendors.

In addition to these configurable reports, Gatekeeper also allows customers to make use of what we term “RAG Status” or Red / Amber / Green across their accounts.

This flexible methodology can be applied in a variety of ways to contract and vendor records to give your users a greater level of understanding and to provide focus for where action should be taken.

In this article we explore what RAG Status is, how it can be applied and provide some real RAG Status examples that you can apply within your business.

RAG Status definition

RAG is an acronym that stands for Red, Amber and Green and is based on a traffic light system. These colours, like those in (UK) traffic lights, are used to denote the status of a contract or vendor in a way that relates specifically to your business objectives and priorities.

How does RAG Status work?

RAG Status provides your business with a summary of information. At a basic level Green means good, while Amber and Red colours alert you to the fact that action is required in some way.

It is not enough to simply apply colours to different scenarios across the contract and vendor portfolio. A RAG Analysis and Action Plan should also be defined to turn Reds and Ambers and Ambers into Greens. This will create accountability across the business to take corrective action as soon as possible.

image (13)-1RAG Status applied in Gatekeeper

How to define RAG Status within your business

The subjective nature of RAG Status is what makes it so widely adopted across Gatekeeper’s customers. How you define each warning colour will depend entirely on what your business’s priorities are and whether you’re working at a vendor or contract level. RAG Status can be applied to entire contracts or vendors, but it can also be applied to more specific areas such as:

For RAG Status methodology to have true meaning throughout your business, there needs to be agreement about what defines each alert level and the actions that should be taken off the back of it.

Adding a RAG Narrative to each Status can help to justify responses, build trust around the methodology, establish understanding around risk mitigation efforts and standardise internal processes when actions need to be taken.

RAG Status examples

At Gatekeeper, we work with customers who use the subjective nature of RAG Status and apply it in completely different ways. The colour-coded system can also be used differently at the vendor and contract level too. We’ve outlined some RAG Status examples that are applied most commonly by the business we work with.

RAG Status for contracts

Status Green Amber Red
Renewals The business is happy with the contract and likely to renew. The business plans to terminate this contract. Notice has been served on the contract and is waiting to expire.
Data capture during onboarding Data is fully captured and fine. Data may be incomplete and needs reviewing. Data is missing or out of date and requires immediate attention.
Pricing performance Good cost-to-value ratio, no action required. Expected cost-to-value ratio, the business could benefit from completing a market review. Poor cost-to-value ratio, escalation needs to take place and alternative options considered.
Delivery of contract obligations All obligations are being fulfilled, no action required. A small percentage of obligations aren’t being fulfilled, corrective action required. A consistent failure of obligation fulfillment. Escalation required immediately.
Data Collection type None required or N/A. Third Party Data. Third Party and Customer Data.


Rag Status for Vendors

Status Green Amber Red
Compliance All certificates are up-to-date and the vendor is compliant with current regulations. No action required. Key certificates or documentation are coming up to their expiry date. The Vendor Owner should reach for updated documentation. Key certificates or documentation have expired and the vendor is failing to comply with current regulations. Immediate action is required to update documents.
Vendor criticality Business continuity easily achievable if vendor is no longer used/ceases to exist. Some disruption expected if the vendor is no longer used/ceases to exist. Nurturing required. Business operations could fail/be suspended if the vendor is longer used/ceases to exist. Priority should be given to this vendor.
Litigation issues No lawsuits/
investigations. No action required.
Pre-defined acceptable number of cases is being reached. Prepare to look for a new vendor. Pre-defined acceptable number of cases is being exceeded. Escalation and corrective action required immediately.
Vendor supply chain ratings Supply chain health is good and vendor should be expected to meet contractual obligations. Some supply chain issues. Be prepared for potential disruption. Poor supply chain health and contract obligations likely to be unmet. Escalation required.
Vendor health Contract raised with no issues. No action required. Payment received late more than once. Extra monitoring and comms required. Service not being provided and terms under dispute. Satisfactory resolution required.


How to use RAG Status within Gatekeeper

Many businesses that are familiar with applying RAG Status to vendors and contracts captured in spreadsheets will make use of manual conditional formatting and spend time communicating the changes to relevant teams before any issues can even be escalated, let alone resolved.

RAG Status applied within Gatekeeper creates a far more seamless experience thanks to automation.

A RAG Status that is Amber or Red can be used as a Workflow Trigger within Gatekeeper’s Kanban Workflow Engine. Any of the use cases outlined above can be used to automate entire internal processes where appropriate action needs to be taken.

A notification can be immediately sent to relevant team members and stakeholders when an issue occurs and a RAG status is applied or changed, preventing any delays in escalation and protecting the business from increasing contract or vendor risk.

Any actions that are taken will be captured in a defensible audit trail, making it easy to see how and when an Amber or Red RAG Status was addressed, while creating accountability across the business.

If you want to know more about applying RAG Status to your contracts and vendors, how Gatekeeper can support your risk mitigation efforts or how to automate escalations, contact us or book your Gatekeeper demo today.

Shannon Greaney
Shannon Greaney

Shannon is an experienced marketer, delivering content on a variety of topics and trends within contract and vendor management.


Contract Management , Contract Lifecycle Management , Vendor Management , Contract Lifecycle , Case Study , Contract Management Software , Contracts , Supplier Management , CLM , Gatekeeper Guides , Negotiation , Risk , COVID-19 , Contract Risk Management , RFP , Artificial Intelligence , AI , Business continuity , Contract Managers , Contract Redlining , Electronic Signatures , Excel , Legal Ops , Redline , Risk Mitigation , SaaS , Security , Spend Analysis , Vendor Management Software , Compliance , Contract Automation , Contract Risk , Data Fragmentation , Employee Portal , Gatekeeper , IT , KPIs , Legal , Metadata , Obligations Management , Procurement Strategy , RBAC , Supplier Performance , Vendor Onboarding , Workflows , automation , collaboration , contract renewals , eSign , webinar , Australia , BCP , Breach of Contract , Brexit , CCPA , CLM solutions , CMS , CSR , Categorisation , Certifications , Cloud , Conferences , Confidentiality , Contract Administration , Contract Ambiguity , Contract Analysis , Contract Breach , Contract Disputes , Contract Economics , Contract Governance , Contract Management Audit , Contract Management Plans , Contract Management Strategy , Contract Obscurity , Contract Performance , Contract Repository , Contract Review , Contract Stratification , Contract Value , Contract Volatility , Dashboards , Data Privacy , Data Sovereignty , Definitions , Digital Transformation , Disputes , ESG , EU , Enterprise , Enterprise Contract Management , FCA , Financial Services , Force Majeure , GDPR , Hotels , ISO , ISO Certification , Implementation , Kanban , Key Contracts , Measurement , Mergers and Acquisitions , Modern Slavery , NDA , Operations , Partnerships , Planning , Port Agency , Pricing , Procurement Planning , RAG Status , Recession Planning , Regulation , Requirements , SOC Reports , SaaStock , Shipping , Spend optimzation , Startups , Suppler Management Software , Sustainable Procurement , Technology , Usability , Vendor Portal , central repository , remote working , time-to-contract , vendor centric

Related Content


subscribe to our newsletter


Sign up today to receive the latest GateKeeper content in your inbox.

Subscribe to Email Updates