The scope of the assessment is a legal entity, which has been specifically requested by your client. It can be your entire group or parent company, or a specific production site.


  • The scope is always indicated on your questionnaire.

  • Please note that the CyberVadis assessment relates to the cybersecurity practices of the specified legal entity and not just those cybersecurity practices that relate to your client.

Did this answer your question?