EcoCitizenZ
Package Journeys

Each package has a guided journey.

Every commercial package on ECZ-ID follows the same five-step midpoint/return pattern. ECZ-ID has 33 packages total — 18 core, 8 advanced, and 7 extension packs — plus 9 add-ons and companion products. This page shows four representative packages, one per commercial target area. The full estate of 33 packages is covered on the Package Flows page.

How every package journey works

1

Identify friction

Confirm the commercial blockage — placement denial, procurement delay, governance gap, or surface rejection.

2

Enter guided flow

The developer flow maps your friction to the correct credential set. No trial-and-error.

3

TrustOps checkpoint

TrustOps activates your credentials. This is the midpoint — you leave this site and return once issued.

4

Return and complete

Return here to confirm, verify against the resolver, and integrate credentials into your operations.

5

Verify via Resolver

Any counterparty can now independently query your identity through resolver.ecocitizenz.org.

Step 3 — the TrustOps Checkpoint — is an external system. Credentials are issued there, not here. This site guides to it and receives you back.

Agent Identity & Operations

KYA Ready Pack™

£149.97 / month

Target friction

Agent denied placement. Platform or ecosystem requires KYA — Know Your Agent — credentials before allowing access.

What’s included

  • Agent Credential

    KYA identity assertion for the deployed agent — linked to the parent Business Passport™.

  • Identity Continuity Passport™

    Long-term identity persistence across deployments. Prevents identity loss on re-provisioning.

  • API Passport™

    Verifiable identity for the agent's API surface — required by platforms that gate API access.

What unlocks after TrustOps

  • Agent passes KYA checks at placement — no manual review required.
  • Platform integrations proceed without identity-block rejections.
  • Identity persists across version upgrades and re-deployments.
  • API surface is independently verifiable by any platform or buyer.
  • Resolver entry enables counterparty trust without documentation exchange.
Start guided flow →Continue to TrustOps ↗
Vendor Onboarding & Procurement

KYB Gate Pack

£419.96 / month

Target friction

Procurement cycle stalled. Vendor eligibility documentation cannot be independently Resolver-checked by automated procurement systems.

What’s included

  • Cyber Resilience Passport™

    Machine-verifiable governance evidence for cyber security posture — required by DORA-aligned and institutional buyers.

  • Risk Policy Passport™

    Verifiable risk policy status for vendor eligibility assessment in automated procurement pipelines.

  • Product Passport™

    SBOM-aligned attestation for the product or service being supplied. Required at tender stage by regulated buyers.

  • Custody Transfer Passport™

    Chain of custody verification for goods or services entering the buyer's supply chain.

  • Identity Continuity Passport™

    Long-term identity persistence across contract cycles. Prevents re-verification overhead on renewal.

What unlocks after TrustOps

  • Vendor eligibility confirmed automatically by procurement system — no submission queue.
  • Cyber security posture independently verifiable without questionnaire round-trips.
  • Product and supply chain evidence available to buyer before any human contact.
  • Custody chain verifiable at tender — accelerates award cycle.
  • Identity persists across renewals — eliminates re-verification overhead.
Start guided flow →Continue to TrustOps ↗
Vendor & Enterprise / Platform Trust

DORA Essentials

£319.96 / month

Target friction

Regulated-sector buyer requires DORA-aligned vendor evidence. Existing documentation cannot be independently verified in machine-readable form.

What’s included

  • Cyber Resilience Passport™

    DORA-aligned cyber security governance attestation. Independently verifiable.

  • Software Supply Chain Passport™

    SBOM and supply chain transparency evidence — required by DORA article 30 arrangements.

  • Risk Policy Passport™

    Risk framework evidence for inclusion in regulated-sector vendor registers.

  • Identity Continuity Passport™

    Persistent verifiable identity across contract and audit cycles.

What unlocks after TrustOps

  • DORA article 30 ICT vendor evidence independently verifiable without document submission.
  • Inclusion in regulated-sector vendor registers accelerated significantly.
  • Continuous compliance posture verifiable at any time — not just at audit.
  • Software supply chain transparency available to buyer before contract execution.
Start guided flow →Continue to TrustOps ↗
Enterprise & Platform Trust

Cyber Governance Pack

£219.97 / month

Target friction

Capital access or insurance engagement stalled. Cyber governance evidence not available in machine-verifiable form.

What’s included

  • Cyber Resilience Passport™

    Machine-verifiable cyber governance. Independently confirmable by capital providers and underwriters without questionnaire exchange.

  • Software Supply Chain Passport™

    SBOM-aligned supply chain evidence for enterprise governance disclosure requirements.

  • API Passport™

    Verifiable identity for API surfaces exposed to institutional counterparties and regulated partners.

What unlocks after TrustOps

  • Capital providers can independently verify governance posture — removing the primary stall reason.
  • Insurance underwriting cycle shortened: posture verifiable without extensive questionnaire.
  • Enterprise partnerships proceed on evidence — not on self-reported documentation.
  • API surface verifiable to institutional partners before any integration agreement.
Start guided flow →Continue to TrustOps ↗
DORA & SBOM Commercial Architecture

DORA and SBOM tier structure

ECZ-ID offers a three-tier commercial architecture for DORA and SBOM coverage. The Essentials baseline is the current live, self-service path. Managed and Enterprise tiers extend the operating model for organisations with deeper obligations — available through guided onboarding.

DORA

DORA EssentialsLive · Self-service

Baseline credentialing package for ICT vendors in DORA-regulated supply chains. Cyber resilience, software supply chain, risk policy, and identity continuity — machine-verifiable and resolver-queryable. Provisioned through TrustOps.

£319.96 / month · Provisioned in TrustOps

DORA ManagedGuided onboarding

Extends Essentials with managed credential lifecycle, continuous compliance monitoring, and structured ICT vendor register integration support. For organisations with ongoing DORA Article 28–30 obligations across multiple supervised counterparties.

Contact TrustOps for guided onboarding · Enterprise engagement pathway

DORA EnterpriseEnterprise engagement

Full enterprise operating model for large ICT vendors or platforms with cross-jurisdictional DORA scope. Supports multi-entity credential management, bespoke evidence output formats, and dedicated compliance infrastructure.

Enterprise contact → TrustOps enterprise onboarding

SBOM

SBOM EssentialsLive · Self-service

Baseline credentialing package for software vendors facing liability or procurement provenance requirements. Software supply chain, product, cyber resilience, and IoT device provenance — independently resolver-verifiable. Provisioned through TrustOps.

£269.96 / month · Provisioned in TrustOps

SBOM ManagedGuided onboarding

Extends Essentials with managed SBOM credential lifecycle across product releases, provenance refresh coordination on patch cycles, and structured output for regulated buyer SBOM disclosure requirements. Delivered via TrustOps onboarding.

Contact TrustOps for guided onboarding · Enterprise engagement pathway

SBOM EnterpriseEnterprise engagement

Full enterprise operating model for platforms and vendors with large-scale or multi-product SBOM obligations. Supports portfolio-level credential management, bespoke SBOM format integration, and dedicated evidence infrastructure.

Enterprise contact → TrustOps enterprise onboarding

Combined Suite

DORA + SBOM Enterprise Suite

For organisations with both DORA vendor obligations and significant SBOM liability disclosure requirements. Unified credential architecture covering regulatory DORA proof, software supply chain provenance, and combined evidence surfaces — structured as a single enterprise engagement.

Not a self-service product. Delivered through guided enterprise onboarding in TrustOps. Architecture scoped to your specific DORA scope and SBOM obligations.

Enquire via TrustOps ↗
Digital Counterparty Infrastructure

ECZ-ID Digital Counterparty Infrastructure Pack™

For businesses whose commercial digital surface — website, API, or domain — is evaluated by automated payment platforms, underwriting engines, and counterparty trust pipelines before any human contact. If your surface is unverifiable, you are excluded silently. This pack makes your digital presence resolver-verifiable.

Includes: Business Passport™ root identity + Digital Counterparty Infrastructure Pack™.

Go to Digital Counterparty pathContinue to TrustOps ↗

Step 5 always belongs to Resolver.

After TrustOps issues your credentials, any counterparty can independently verify your identity status through Resolver — without contacting you, without documentation requests, and without delay.

Open Resolver ↗