You are here

Approval Process

The tScheme Approval process

Any organisation which is a legal entity can apply for tScheme Approval for its Service. The whole process, from start to finish, can take as little as three months. Organisations that have already achieved ISO 27001 or ISO 9000 certification, or are regulated by the Financial Conduct Authority, may have systems and procedures in place which make Approval more straightforward.

These are the main steps involved in obtaining Approval for your Service:

  • Select your tScheme Profile – tScheme Profiles are available for PKI (Public Key Infrastructure) and non-PKI technologies. More about tScheme Profiles.
  • Select an Assessor – tScheme-recognised Assessors are 100% independent and UKAS accredited. More about approved assessors.
  • Agree outline specification of service – This provides a high-level description of the service, agreed with the Assessor, to be submitted for Approval, and lists the relevant Approval Profiles for the type of Service Approval sought.
  • Register with tScheme – This includes a contract that binds your organisation to an agreed timetable for Assessment and Approval, and to the tScheme Code of Conduct. Agree to pay a Registration fee of up to £5,000(+VAT) per annum, but which will be offset against any Approval Fee due within 12 months once the Grant of Approval has been achieved.
  • Work with your Assessor – Your Assessor will guide you through the Approval process and make sure you have the systems and procedures in place to comply with the requirements of your selected Profiles.
  • Final audit and report – When systems are in place, your Assessor will conduct an audit and produce a report, which is submitted to tScheme as evidence that your sService meets the requirements.
  • tScheme review – The Assessor’s report is reviewed by our independent Approvals Committee, which reports to the tScheme board. The Committee is formed from experts across our membership as well as independent subject-matter experts — practitioners who are responsible for the development and maintenance of the technical aspects of tScheme.
  • Approval – If our independent Approvals Committee is satisfied with the Assessor’s report, they will award a Grant of Approval to your Service and, if appropriate, notify whichever Trust scheme you are seeking to be part of. You can then display the tScheme Approval Mark on your website or other materials in relation to the Trust Scheme concerned. More about tScheme approval Trust marks.

Maintaining quality

As part of our quality commitment, regular re-assessment audits are carried out by tScheme-recognised Assessors. In case of justified complaint, the contract between tScheme and the Service Provider provides for an appropriate remedy and sanctions. This could mean a notice for immediate correction, suspension of Approval rights pending correction, or, in severe circumstances, termination of Approval rights. Any Trust Service Providers found to be in breach of their obligations also have rights of appeal against any decisions.

The approval journey

Getting tScheme approval

Approval usually takes at least three months, but it can be quicker.


Our members

We’re a member-led not-for-profit organisation.


Schemes and Profiles

Providing guidelines and criteria for organisations to develop their trust services.