Frequently Asked Questions

‘Digitally Aware’ is a new certificate, backed by the police and BSI aimed at organisations with a low risk of cyber-crime. It gives you the opportunity to achieve a certificate which will show your customers that you have taken the necessary steps to protect yourself against the most common types of breach or attack.
The process has been designed to be as simple as possible. You start by completing a short self-assessment questionnaire to establish your level of risk. If you are at low risk of cyber-crime, you will be given the opportunity to apply for the 'Digitally Aware' certificate. Higher risk organisations can apply for the ‘Digitally Resilient’ certificate.
The 'Digitally Aware' certificate costs £50 + VAT. This is simply to cover the cost of administering the scheme, ongoing development, maintenance and support costs.
You’ll get a police and BSI endorsed certificate which you can download. The certificate is valid for 12 months. You will also get a tailored report based on the answers you gave showing you what we recommend you do to reduce your vulnerability further, using information and advice from the National Cyber Security Centre (NCSC) among others.

Click here to a view a demo of our assessment tool.

You can start the process by clicking here.
The ‘Digitally Aware’ self-assessment process should take no more than 15 minutes to complete.
We’ve developed an online self-assessment tool to make it as simple as possible, but should you require any further information, we’ve added a box next to each question that you can click on to learn more about it.
Don’t worry. It may be that you need to make one or two minor changes to the way in which you manage digital security in your organisation. Your tailored report will contain a set of recommendations showing you what needs to be done. You will also be able to access a list of specialist security providers who have been certified by the police and BSI.
You can have as many attempts at passing as you wish within 6 months of starting the process.
Your certificate will last for 12 months and is renewable each year.

Yes. We actively encourage successful applicants to display the certificate and 'Digitally Aware' logo on websites, marketing material and other visible locations.

We see our ‘Digitally Aware’ certificate as a ‘Cyber Essentials lite’. It’s designed for businesses who want to take the first step in reducing their vulnerability to an attack or breach. We believe that Digitally Aware is a stepping stone to Cyber Essentials and will ultimately increase the number of organisations achieving the Government’s flagship scheme.

Digitally Resilient was designed for SMEs who are above the minimum level of cyber risk. Assessment and pricing is carried out through BSI.

Applicants must be able to demonstrate that they have implemented controls that are appropriate to the level of risk they are exposed to. BSI assess businesses against the National Cybersecurity Centre (NCSC) “10 steps to cybersecurity” principles. This process includes an assessment to ensure the level of control is appropriate to the level of risk.

Applicants will also be assessed on their user-related process such as awareness/training, removable media, remote working and incident management. Finally, an independent scan is performed of the business’s internet-facing perimeter to ensure that common vulnerabilities are not present.

The cost will vary depending on a number of factors. This includes the nature of your business, the sector you operate in, your exposure to risk and the integration of cyber connectivity throughout your business model.

Once you have completed the initial self-assessment tool, you will need to fill out and submit a form, which will be sent to BSI. You will be contacted by BSI within 2 working days to arrange the next stage of the process.

Click here to a view a demo of our assessment tool.

It depends on the maturity, complexity and risk profile of your organisation. You may already have measures in place which meet the standard required for Digitally Resilient; in which case it is simply a case of verifying any supporting documents. For other organisations, additional work may be required. We anticipate however, that on average, it will take somewhere between 1-6 months from application to completion.
Yes. To become ‘Digitally Resilient’, you may need the help of a Digital Service Provider from the list here. We’ve developed the assessment to make it as simple as possible, but the additional measures required to achieve ‘Digitally Resilient’ mean that a greater understanding of your existing security posture is required.
Don’t worry. It may be that you need to implement some additional measures within your organisation. As part of the assessment, you will receive a detailed tailored report showing you what needs to be done. You will also have access to a list of Digital Security Providers who have been certified by the Police and BSI.
If you don’t meet the required standard at the first attempt, BSI will work with you to resolve any issues identified during the assessment process.
The ‘Digitally Resilient’ certificate is valid for 12 months.

Yes. We actively encourage successful applicants to display the certificate on websites, marketing material and other visible locations.

To become ‘Digitally Resilient’ you will need to have achieved certification in Cyber Essentials at the very least. Digitally Resilient includes some additional security measures that are not currently covered by the existing Cyber Essentials scheme, but which we feel are required to reduce your vulnerability to cyber crime.
Our chosen technology provider, Tillr ( have built the platform in accordance with relevant security standards. As part of our due diligence process, we have had the platform independently tested to confirm its security credentials. We have also carried out due diligence on the company and their staff.

No. Police DSC is a not-for-profit organisation owned by the police. Every penny that we receive from the scheme will be reinvested directly into crime prevention activities across the United Kingdom.