How frequently should vendor master data be validated?

VAT registration numbers should be validated on every invoice receipt (VIES for EU) or at minimum quarterly for active suppliers. Bank account details should be re-confirmed annually and when changes are requested (with enhanced controls for changes). Peppol participant IDs should be verified by lookup in the Peppol directory before each batch of invoices is sent. Address and legal name changes should be flagged by suppliers and verified before update.

What controls prevent fraudulent changes to vendor bank details?

Vendor bank detail change controls are critical fraud prevention measures. Best practice requires: all changes to bank details to be submitted in writing by the vendor via a secure channel, followed by a callback to the vendor's known contact number (not the number in the change request) to verify the change is authentic. Dual authorization by two AP staff members for any bank detail change. No payment to a new bank account until the change has been verified. Email-only change requests should never be actioned without callback verification.

Procurement and Finance Teams

How does vendor master data management affect invoice compliance?

Vendor master data quality directly impacts invoice compliance. Incorrect supplier VAT numbers prevent validation; wrong bank details delay payment; missing contact information delays dispute resolution. Master data management (MDM) programs that maintain current, validated supplier records are a prerequisite for high invoice processing quality. Supplier self-service portals allow suppliers to maintain their own records within controlled parameters.

What vendor master data fields most affect invoice compliance?

Critical vendor master data fields for invoice compliance:

VAT registration number: Must be current and valid for input VAT recovery
Legal entity name: Must match the entity named on invoices exactly for VAT purposes
Registered address: Required for invoice content compliance in most jurisdictions
Peppol participant ID: Required for Peppol-based invoice receipt; must be current
Bank account details: IBAN and BIC must be current for correct payment routing
Invoice format preference: Record whether supplier issues Peppol, email PDF, portal, or paper
Compliance certification: Flag suppliers certified for e-invoicing compliance vs requiring assistance

Frequently Asked Questions

How frequently should vendor master data be validated?: VAT registration numbers should be validated on every invoice receipt (VIES for EU) or at minimum quarterly for active suppliers. Bank account details should be re-confirmed annually and when changes are requested (with enhanced controls for changes). Peppol participant IDs should be verified by lookup in the Peppol directory before each batch of invoices is sent. Address and legal name changes should be flagged by suppliers and verified before update.
What controls prevent fraudulent changes to vendor bank details?: Vendor bank detail change controls are critical fraud prevention measures. Best practice requires: all changes to bank details to be submitted in writing by the vendor via a secure channel, followed by a callback to the vendor's known contact number (not the number in the change request) to verify the change is authentic. Dual authorization by two AP staff members for any bank detail change. No payment to a new bank account until the change has been verified. Email-only change requests should never be actioned without callback verification.

How does vendor master data management affect invoice compliance?

What vendor master data fields most affect invoice compliance?

Frequently Asked Questions

Related Concepts

Related Regulations