Certifications

Digidentity is certificatied for various standards and schemes.

The ISO27001:2013 standard is a specification for an Information Security Management System (ISMS). An ISMS provides a policies and procedures for information security that includes risk management, security controls for logical and physical access controls, network security, human resource security, business continuity, incident management, operational security and compliance. Digidentity is audited annually on compliance to ISO27001:2013 by BSI Group Netherlands (certificate ISC 066).

The ETSI EN 319 411-1 standard defines the policy and security requirements for Trust Service Providers issuing public key certificates, including trusted web site certificates. Digidentity issues EU qualified certificates as part of our Domain Validated and Organisation Validated Server certificates and Secure Email certificates. Browser and operating systems companies, such as Microsoft, Apple, Google and Mozilla accept this certification as one of their requirements to include our root certificate. Digidentity is audited annually on compliance to ETSI EN 319 411-1 by BSI Group Netherlands (certificate ETS 043).

The ETSI EN 319 411-2 standard defines the policy and security requirements for Trust Service Providers issuing EU qualified certificates for electronic signatures. Digidentity issues EU qualified certificates as part of our electronic signature service for eSGN and eSGN Seal in compliance with eIDAS requirements. Digidentity is audited annually on compliance to ETSI EN 319 411-2 by BSI Group Netherlands (as stated on certificate ETS 015).

eIDAS Digidentity is a Qualified Trust Service Provider (QTSP) as defined in EU Regulation 910/2014 also known as eIDAS. Digidentity is included on the EU Trust List for Trust Service Providers for issuance of EU qualified certificates. Digidentity is audited annually on compliance to eIDAS by Agentschap Telecom and by BSI Group Netherlands as part of the ETSI audit (certificate ETS 015).

PKIoverheid is designed for trustworthy electronic communication within and with the Dutch government. PKI certificates secure the information that persons and organisations send via internet on a high level of reliability. Digidentity is audited annually on compliance to PKIoverheid requirements by BSI Group Netherlands as part of the ETSI audit (as stated on certificates ETS 015 & ETS 043).

eHerkenning is an authorisation service from the Dutch government to provide secure access to government services for organisations. Digidentity is selected by the Dutch government as supplier of eHerkenning services. Digidentity is audited annually on compliance to eHerkenning requirements by Agentschap Telecom.

tScheme aims to improve levels of trust in digital economies. tScheme provides an independent means of establishing and testing the trust of services. Digidentity is an Identity Service Provider for GOV.UK Verify and has achieved the tScheme Approved Service certification. Digidentity is audited anually on compliance to the tScheme requirements by Lloyd’s Register from the UK.