English (US) Nederlands

Articles in this section

What Certifications Does Digidentity Have?

Avatar
Max
  • Updated
Follow

Digidentity is independently audited and certified against international standards for information security, privacy, and trust services. 

These certifications demonstrate that our identity verification, authentication, and digital signing services meet strict legal and security requirements.

 

Information Security & Privacy

 

ISO/IEC 27001 – Information Security Management

Digidentity operates a certified Information Security Management System (ISMS).

This ensures risks to systems and customer data are continuously identified, managed, and controlled.

This includes controls for:

  • Access management
  • Network security
  • Incident management
  • Business continuity
  • Compliance monitoring

 

ISO/IEC 27701 – Privacy Information Management

Extends ISO 27001 with privacy protection requirements.

This ensures that:

  • Personal data is processed lawfully and with data minimisation
  • Privacy is built into our systems (“privacy by design”)
  • GDPR compliance is structurally supported

 

ISO/IEC 27017 – Cloud Security

Defines additional security controls specifically for cloud environments, such as:

  • Virtual environment protection
  • Secure configuration
  • Monitoring and logging

 

ISO/IEC 27018 – Protection of Personal Data in the Cloud

Ensures personal data stored and processed in cloud systems is protected and handled in line with privacy legislation.

 

Quality & Continuity

 

ISO 9001 – Quality Management

Demonstrates that Digidentity maintains structured processes to ensure consistent service quality and customer satisfaction.

 

ISO 22301 – Business Continuity

Confirms that Digidentity has tested procedures and redundant infrastructure in place to keep services available and recover quickly from disruptions.

 

Trust Services & Identity (eIDAS & PKI)

Digidentity is a Qualified Trust Service Provider (QTSP) under European legislation.

 

eIDAS (EU Regulation 910/2014)

This enables Digidentity to issue, among other things:

  • Qualified electronic signatures (QES)
  • Electronic seals
  • High-assurance digital identities (eID)

Digidentity is listed on the EU Trust List and is supervised by the Dutch Authority for Digital Infrastructure.

 

ETSI EN 319 401 – Trust Service Provider Requirements

Defines operational and security requirements for trusted providers of digital identity and trust services.

 

ETSI EN 319 411-1 – Public Key Certificates

Covers the issuance of certificates for:

  • Authentication
  • Encryption
  • Server certificates

 

ETSI EN 319 411-2 – Qualified Certificates

Enables the issuance of legally binding qualified electronic signatures and organisational seals.

 

ETSI TS 119 461 – Remote Identity Proofing

Certifies Digidentity’s remote identity verification process, confirming that:

  • The document is genuine
  • The person is real (liveness detection)
  • The person matches the document

This enables high-assurance verification without physical presence.

 

UK Digital Identity Certification

 

UK Digital Identity & Attributes Trust Framework

Digidentity is certified as an Identity Service Provider (IDSP) for:

  • Right to Work
  • Right to Rent
  • Disclosure & Barring Service checks

 

Why this matters

These certifications confirm that Digidentity services are:

  • Legally recognised across Europe
  • Independently audited (annually)
  • Designed to protect personal data
  • Suitable for high-assurance identity verification

You can view the official certificates here: https://www.digidentity.eu/certifications