Statement of Inclusions and Exclusions NCS 7516

NTA 7516 Criteria for Communication Service Providers

August 17, 2020 – Version 1.1

Group	Criterion	SecuMailer	Value
Availability	Minimum availability (6.1.2)	Yes	99.95%
	Maximum downtime duration (6.1.3)	Yes	0
	Maximum data loss (6.1.4)	Yes	0
Integrity	Origin verification (6.1.5)	Yes	eIDAS “Substantial” and “High”
	Data integrity (6.1.6)	Yes	TLS / DANE
	Non-repudiation of sender (6.1.7)	Yes	TLS / SPF / DKIM / DMARC
	Sender authorization (6.1.8)	Yes	TLS / SPF / DKIM / DMARC
Confidentiality	Data confidentiality (6.1.9)	Yes	AES256
	Access confidentiality (6.1.10)	Yes	eIDAS “Substantial” and “High”
	Communication confidentiality (6.1.11)	Yes	TLS / DANE
	Legal basis for transmission (6.1.12)	No	Transmission basis is determined by the sender
	International ad-hoc message traffic (6.1.13)	Yes	EU-based
Usability	Continuity of ad-hoc messaging – replies (6.1.14)	Yes	ESMTP
	Continuity of ad-hoc messaging – forwarding (6.1.15)	Yes	ESMTP
	Security as convenience (6.1.16)	Yes	ESMTP
	Readability (6.1.17)	Yes	ESMTP
	Own copy (6.1.18)	Yes	ESMTP
Interoperability	File integration (6.1.19)	Partial	An API is available
Interoperability	Multi-channel communication (7.2)	Yes	NTA 7516 Certified

REST API

Developer portal ›

SecuMailer has a REST API for sending secure emails. Both the GDPR and the NTA 7516 functionality are fully accessible via this API.

The API is documented with OpenAPI specification 3.0.1.

The REST API has webhook functionality, which means that the SecuMailer platform can communicate email events with an HTTPS endpoint of the sender.

SMTP API

The SMTP API is usually the simplest integration option for many backend applications because backend applications often have a provision for an SMTP client on board.

We have successfully integrated for customers with Salesforce, SAP and Centric. We have also successfully integrated with patient file systems such as Medisoft Dossier Manager.

GraphQL API

The SecuMailer platform offers insight into email events. This can be done on the basis of a (push) webhook call (see REST API above) and on the basis of a (pull) GraphQL endpoint.

Get a Demo

Name(Required)

First Last

Email(Required)

Organization

Zip-code(Required)

Phone number

Contact Sales

Your Name(Required)

First Last

Email(Required)

Organization

Zip-Code(Required)

Phone

Private Dutch Cloud

We can offer SecuMailer services via our Dutch Private Cloud. This ensures full sovereignty of hosting with guaranteed processing on NL (EU) infrastructure. We host our Dutch Private Cloud with our partner Uniserver.

Data sovereignty

Your email processing and data handling is fully sovereign.

Trusted European Solution

ECSO-certified and hosted entirely on European servers

Compliant by design

Comply with all relevant regulations such as GDPR, NTA 7516, and eIDAS.

What is Private Dutch Cloud?

SecuMailer is built with security by default in mind. This means that every step in the transport of email is safeguarded. Normally, email traffic flows through SecuMailer’s secure European platform.

With Private Dutch Cloud, your organization can take this one step further: the entire transport process of emails runs via our own Dutch cloud environment. All processing and data handling is done in The Netherlands. Messages are routed through our managed private cloud environment, securely encrypted, and delivered directly to the recipient. This ensures that sensitive email traffic always remains under your own control.

Why is Private Dutch Cloud important?

By routing email transport entirely through our Dutch cloud environment, you keep full control over how and where data flows.
Private Dutch Cloud is especially relevant for organizations with strict requirements on data transport and sovereignty. It supports:

Internal data sovereignty and continuity policies

Confidentiality and compliance obligations

Protection against risks linked to non-European cloud providers

Why choose Private Dutch Cloud?

Dutch sovereignty and European guarantees

With Private Dutch Cloud, we provide a fully Dutch and therefore European alternative without dependency on US hyperscalers or non-EU investors. We meet the requirements of the European Economic Area (EEA) and proudly carry the ECSO Label of Trustworthiness.

What once seemed like a theoretical risk has become reality through recent geopolitical incidents. With Private Dutch Cloud, organizations can safeguard their digital continuity themselves.

— Yvonne Hoogendoorn, CEO SecuMailer

Implementation & Support

The technical specifications of Private Dutch Cloud are coordinated in a session with your IT team. Topics include:

Security and connection requirements
Transport logic within the SecuMailer platform
Help with mapping your compliance requirements to our secure email capabilities

Additional support is available at our standard consultancy rates.

Ready to share large files the secure way?

With SecuFiler, you ensure that your privacy-sensitive documents are delivered securely to the recipient, while you remain in full control.

Get a free demo

See how easy secure emailing can be

Get a free Demo

Prefer to talk first?

We’ll help you explore your best-fit integration.

Talk to our team

SecuMailer

Navigating to security – why customers switched to Secumailer

Questions? We’re ready to help.

Wondering what SecuMailer costs?