Anyone wishing to be officially listed on the EU Trusted List (EUTL) by the competent national supervisory authority as a qualified provider for electronic registration and delivery services must not only fulfil the requirements set out in the eIDAS Regulation, but also provide evidence of this by an independent third party.
Regardless of where you are in the process, we will accompany you on your way to qualification status. Starting with possible preliminary tests through to the final conformity assessment (certification), we offer you all the services you need to ultimately qualify with your competent supervisory authority - in Germany the Federal Network Agency (BNetzA). We can also provide you with workshops or training sessions to give you an insight into the world of eIDAS & ETSI.
Are you already listed as a qualified trust service provider for electronic registration and delivery services, but need renewed proof that you fulfil the applicable provisions of the eIDAS Regulation, the ETSI standards and national legislation? We will review your processes and documentation and carry out your successful re-certification.
Our offer is aimed at a wide range of organisations involved in the secure, legally binding distribution and use of digital electronic registration and delivery services:
This is how we support you holistically:
Training & Qualification
Concept & preparation
Testing & conformity assessment
Audit of your implementation based on the eIDAS Regulation, including
Application of the following ETSI standards:
Certification & re-certification
Electronic registration and delivery services transmit electronic data such as e-mails between third parties and provide proof of the sending and receipt of the transmitted data at a specific date and time. They also identify and authenticate the sender and recipient. The proof of dispatch and receipt confirms that the data was transmitted intact from the identified sender to the identified recipient at the specified time. Registered mail and delivery services provide a secure channel for the transmission of documents.
In Germany, the Federal Network Agency (BNetzA) is the authority responsible for recognising qualified trust service providers in accordance with the eIDAS Regulation.
An electronic mailbox is a secure digital storage location in which recipients can receive and manage electronic registered mail or other confidential documents. It serves as a digital reception channel for qualified electronic deliveries.
As part of the conformity assessment, independent evaluators of the conformity assessment bodies (CAB) (such as TÜV NORD CERT) check your documents (e.g. CP/CPS/TSPS, Policy Disclosure Statement, GTC and Termination Plan) for compliance with criteria and requirements, technical and organisational measures based on the relevant eIDAS articles and standards such as ETSI EN 319 401.
Authorisation as a qualified trust service provider is subject to regular recertification, as the certificate is valid for a total of 2 years. The recertification audit takes place within the last 6 months of the certificate validity of the currently valid certificate (months 18 - 24).