Onboarding Guidelines

• 1. Introduction
• 2. Prerequisites for Onboarding
• 3. Launching the Onboarding process
• 4. Submission and verification of Documentation
• 5. Signing the Marketplace Terms and Conditions
• 6. Generation of LEAR Verifiable Credentials
• 7. Contact and Support

1. Introduction

Purpose of the Guide

This guide is designed to facilitate the onboarding process for new Cloud Service Providers (CSPs) in the  Marketplace, ensuring a clear understanding of the necessary steps to complete registration and start publishing offers.

Scope of the Marketplace

The  Marketplace is a digital platform that enables CSPs to offer cloud and edge computing services to enterprise customers across Europe.

The main goal of the onboarding process is the creation of an operating account for the CSPs from which they can operate within the Marketplace and start publishing their offerings.

The process is structured in three main steps:

1. Launching of the process and provision of company information and documentation

2. Verification of the company documentation and contract signature

3. Generation of the verifiable credential for the Legal Entity Appointed Representative (LEAR)

Upon the generation of the LEAR verifiable credential, the CSP is fully operational. The LEAR is the person that the CSP appoints formally, vested with all the necessary powers of representation, to interact within the DOME Marketplace with other companies.

You can find more information about the LEAR here.

Remark about the legal checks

Ensuring a high level of trust in the operation of the Marketplace is a priority for the Marketplace. To achieve that, we have opted for using verifiable credentials as the means of authenticating the operators of the CSP accounts. The generation of verifiable credentials requires the verification of the claims concerning the company and the claims of its representatives (e.g., whether the company exists, the capacity of representing the company of an individual, etc.). That is why the onboarding process requires the verification of a set of legal documentation to be submitted by the CSPs.

If a Qualified Digital Certificate of the legal entity in the sense of the eIDAS Regulation is used, most of these verifications have been made by the qualified trust services providers authorised to generate those certificates, and the DOME Marketplace relies on those verifications. That is why the set of documents to be sent is much lighter for the companies having the eIDAS Qualified Digital Certificate.

We strongly encourage the CSPs willing to onboard on the Marketplace to use eIDAS Digital Certificates in the onboarding process. This will ease the process and the subsequent operation of the lifecycle of the LEAR authorization including the revocation of a LEAR appointment.

2. Prerequisites for Onboarding

Eligibility Verification

Before launching the onboarding process, make sure that you meet the following criteria:

• You are a legal entity duly registered in an EU country.
• You have the capability to offer cloud or edge services.
• The target users of the offerings you publish are other companies or legal entities or professionals, not consumers.
  

3. Launching the Onboarding process

When you enter into the DOME Marketplace landing page, click on the 'Register' button, at the upper right corner.

This button leads you to the online forms where you must enter the information requested. The information you are providing will be used to generate the Declaration of Honor and the Legal Entity Appointed Representative Form that the CSP is required to submit in the onboarding process.

There are three forms:

1.  The first one is used for collecting information about the legal representative of you company

2.   The second one gathers information about your company

3.   The third one requires information for identifying the Legal Entity Appointed Representative 

All the fields are mandatory unless otherwise stated in the forms.

If you want to review the forms before completing the forms, you can either click on the links provided above, or otherwise press the 'Fill with test data (only for testing)' button, at the bottom of the online forms.

Please, bear in mind that we use the term "legal representative" to refer to somebody vested with legal power to represented the company. This representeation power can emerge from, among other options: (a)  the law attributed legal representation of the company because of the position held by the individual (e.g., in some jurisdictions, the president or the CEO of a company);or (b) being appointed as legal representative by virtue of an official Power of Attorney. 

If you have any doubt about the appointment of the LEAR, please, kindly refer to the  Practical comments to Appointment Of Legal Entity Appointed Representative Form. This document offers practical advice and detailed instructions on how to properly fill out the LEAR form.

Once you have filled in the information requested, when you click the 'Submit and create documents', you will get to another screen where the declarations have been automatically generated with your data.

Please, carefully check all the data you submit before creating the documents to make sure that all the information is correct.

Once you have generated the documents, you must print the Declaration of Honor and the LEAR appointment form.

When you have the documents in pdf you will move to the next stage of the onboarding process: the submission of the required documentation and its legal review by the onboarding team of DOME.

4. Submission and verification of Documentation

Required Documentation

Depending on whethter you sign them digitally or manually you will be required to send more documentation.

If the CSP company has a valid qualified Digital Certificate in the sense of the eIDAS Regulation you will need to submit only:

• Declaration of Honor Form: Completed and signed using the qualified Digital Certificate of the company.
• Appointment of the Legal Entity Appointed Representative (LEAR) Form: Completed and signed using the qualified Digital Certificate of the company.

Please note that, as used in this guidelines, the term "company valid qualified Digital Certificate" is referring to a digital certificate that validly identifies a natural person as a representative of a legal person. The digital certificate itself must provide the information of such represntative status.

The validity of the qualified digital certificated used may be checked using third party tools, such as, but not necessarily limited to, the European Commission Digital Signature Services demonstration WebApp. You expressly consent to the use of such verification means to verify the validity of the digital certificates used to sign the documents you submit to the DOME Marketplace.

Important note: the CSP legal representative can appoint her/himself as a LEAR of the CSP, and there can be more than one active LEARs for a single CSP.

Important note: in the Appointment of the Legal Entity Appointed Representative (LEAR) Form, the appointed LEAR must sign the document accepting the appointment along with the CSP legal representative. The appointed LEAR should sign with a natural person qualified digital certificate, however, signing with a company qualified Digital Certificate designating she/he as legal representative is also acceptable.  When the person acting as Legal Representative of the CSP is appointing her/himself as LEAR, the company qualified Digital Certificate can be used for both appointing the LEAR and for the LEAR accepting the appointment.

If the validity of the Company Digital Certificate verification is not successful, then you will have to submit the whole set of documents described in the following section.

If the CSP company doesn’t have a valid qualified Digital Certificate (eIDAS Regulation) you will need to submit: 

• Certificate of Incorporation: This document must display the complete name of the company, its date of incorporation, and the address of the registered office. It should not be older than three (3) months from the date the potential CSP is submitting its application to onboard.
• VAT Certificate: Issued by the competent authority in the country of registration. This certificate must not be older than three (3) months from the date of application.
• Power of Attorney: A certified copy of the power of attorney or another document evidencing the source of the power of representation of the legal representative acting on behalf of the potential CSP.
• Appointment of the Legal Entity Appointed Representative (LEAR) Form: Completed and signed.
• Declaration of Honor Form: Completed and signed.
• Sworn Translations: A sworn translation into English of any document not origially drafted in English must be provided.

Once you have full set of documents you must send them to onboarding@dome-marketplace.eu.

Documentation Review and Notification Process

After the required documentation has been submitted, the review process begins. It may take more than five business days. Once achieved, you will receive a notification about the status of their documentation:

• Documentation Correct and Complete: If all documents are correct and fully compliant, a notification confirming the correctness and completeness will be sent.
• Error, Mistake, or Information Missing: If there are any errors, mistakes, or missing information, you will be notified and given a fourteen (14) days term to complete or correct the documentation. Here's what happens next:
  •     The new information will be reviewed once submitted.
  •     If the corrections or additional documents are not provided in a satisfactory manner within the specified fourteen (14) days, then we will deem that you relinquish from your onboarding request.

It's crucial that all information provided during the application process is accurate and complete to prevent any delays or rejection during the review phase.

5. Signing the Marketplace Terms and Conditions

Contract Signing

After your documentation is verified and you are notified of approval, either your Legal Representative or the appointed LEAR must sign the Marketplace Terms and Conditions for Cloud Service Providers. A copy of the contract will be generated with your company data and sent to you. 

This document outlines all legal requirements and operational standards expected from the CSPs within the Marketplace.

If you want to review the Contract before completing the oboarding process, you can download the DOME Marketplace Contract for Cloud Service Providers and the DOME Marketplace Procedures, which is a document incorporated into the Contract by reference.

Remember: If you have onboarded through the process for CSPs having a valid eIDAS company digital certificate, you must use this certificate to sign the Marketplace Contract for Cloud Service Providers.

Submitting the Signed Contract

Once signed, the contract must be sent via email to onboarding@dome-marketplace.eu. Only after this contract is received and processed by the DOME onboarding team the process of generating the verifiable credential will continue.

6. Generation of LEAR Verifiable Credentials

The verifiable credentials are used in the Marketplace to as the unique login mechanism, for they are a reliable digital ID that allow to trace back the activity of any person operating within the platform to the original company to which she represents and to minimise the risk of tampering through its own multi-factor authentication mechanism.

The Verifiable Credentials are used to login into the Marketplace, for publishing the company offerings in the Marketplace and, if and when the functionality is available, to manage commercial transactions operated through the Marketplace.

The information you provided about the company, the LEAR designation, etc. is needed for the generation of such verificable credentials in a consistent and reliable way that will bring trust and thus, value, to the users of the Marketplace (be them CSP or Cloud Customers).

Once you receive the confirmation of receipt of the signed copy of the Marketplace Terms and Conditions for Cloud Service Providers, the process for the generation of the verifiable credential for your LEAR starts.

By generating verifiable credentials (LEARCredentials), the Marketplace ensures that only people entrusted by the CSP can operate the CSP’s Marketplace account. This brings value to the operation of the Marketplace as it dramatically lessens the possibility of having illegitimate Offerings listed in the Marketplace, thus uplifting trust sentiment in the Cloud Customers, and also in the CSPs, that have a robust means to control that only the people authorized by the company can implement actions in the Marketplace on their behalf.

Generation of LEAR Credential

Credential Issuance

The first credential of a company is that of its LEAR. Once you complete the registration on Marketplace Digital Wallet and have received the confirmation, the LEAR will receive an email within a few days with a so-called credential offer. For more information about the credential acquisition process, please refer to the section "Receiving and Accepting the Credential Offer" further down on this page.

Once the LEAR has obtained their credential, they can log in to the DOME Issuer to create credentials for other employees of their company. To log in to the Issuer,  scroll down to the button "Login as Legal Representative", and click it.

Open the Wallet (see the comprehensive Wallet Guide), scan the QR code, and select the credential.

You will be redirected to the list of issued credentials. If none have been issued yet, the list will be empty. You can sort the credentials in ascending or descending order by clicking once or twice on the header of each column, respectively.

To create a new credential, click "New credential".

Fill in the form. To be able to create the credential , all mandatory fields (marked with a *) have to be filled. All filled fields have to have a valid format. If an invalid format is used, an error message will be displayed. Once you correct it, the error message will disappear.

Example of email incorrect format:

Example of email correct format:

When completing the form, make sure to select the appropriate "powers" for the credential you want to issue. These "powers" determine which actions the credential holder can perform. For security reasons, it is always recommended to be as restrictive as possible.

Once all the fields in the form are valid, you will be able to click the "Create Credential" button.

Doing so will generate the credential, and if the process is successfully completed, you will be redirected to the Dashboard with a success popup message. There, you will see the newly created credential. If it does not appear immediately, you can easily find it by clicking twice on the "Updated" column, which will then display the most recently modified/created credentials first. If it still doesn't appear, you may have to refresh the page.

The new credential will have a "DRAFT" status. This means that the user has not yet completed the credential acquisition process described in the "Receiving and Accepting the Credential Offer". Once downloaded, the status will change to "VALID".

The table does not update automatically when a credential changes, so to see the most recently updated statuses, you will need to refresh the page.

After creating the credential, the Mandatee email address introduced in the form should receive an email to start the process of downloading the credential. See the "Receiving and Accepting the Credential Offer" section below.

Registering on the Marketplace Digital Wallet

Access the Digital Wallet:

For detailed instructions on how to register and set up your Marketplace Digital Wallet, please refer to the registration section in our comprehensive Wallet Guide. This guide provides step-by-step instructions on creating your wallet account.

Receiving and Accepting the Credential Offer

0. Receiving the Credential Offer:

If you are the LEAR of the company, once your company completes the registration on Marketplace Digital Wallet, and has received the confirmation, you will receive within a few days an email with a so-called credential offer.

If you are an operator employee (not LEAR), you will receive a credential offer when you LEAR creates one. See the "Credential Issuance" section above.

(NOTE: even if the name is Credential Offer accepting the verifiable credential is mandatory for having an operational CSP account in the Marketplace: if you do not complete the process of generating the verifiable credential - i.e., accepting the credential offer- you will not be able to operate your account and thus, even if you have signed the Marketplace Contract for Cloud Service Providers, you will not be technically enabled to receive the Marketplace Services).

When you click the "Start Activation" email button, a page will open to guide you through the two basic steps to obtain the credential: 1. Log in to the Wallet and 2. download the credential.

There are two ways to complete this steps:

1. Using two devices (one to open the QR code and the other to scan it with the Wallet)
   
2. Using a single device (open the Wallet and get the credential in the same device)
   

1.1 Obtaining the credential with two devices

Step 1: Log in to the Wallet using the device you intend to use to scan the QR code. You can open the link to log in by scanning the displayed QR. Once logged in, proceed to Step 2 on the offer page by clicking the "Next" button at the bottom of the screen.

Please be aware that, once you click on the Next button, you have 10 minutes to use the QR before the credential offer expires. For more details, see the section "Expiration of the credential offer" below.

Step 2: A QR code will appear. Scan the QR code with the Wallet. The Wallet will display a screen to enter a PIN code.

Important: Do not close the credential retrieval tab until you have completed the process, since you might have to refresh the offer in case you have problems in the following steps of the download process. For more details, see the section "Expiration of the credential offer" below.

1.2 Obtaining the credential with a single device

Step 1: Click the ‘Wallet’ link. A new tab will open with the Wallet login screen. Enter your username and password to log in. Once logged in, proceed to Step 2 on the offer page by clicking the Next button at the bottom of the screen.

Please be aware that, once you click on the Next button, you have 10 minutes to use the QR before the credential offer expires. For more details, see the section "Expiration of the credential offer" below.

Step 2: Click the ‘Verifiable Credential’ link. The Wallet will open in a new tab, displaying a field to prompt the PIN code. 

If you were not previously logged in or if your Wallet session has expired, you will need to log in again to access the PIN screen.

2. Scanning the QR

Look for the QR scan button in your wallet app to initiate the scanning process.

Note: If you experience issues with the camera not activating or if the QR code is expired or already used, please consult the troubleshooting section of our Wallet Guide. For expired or used QR codes, email domesupport@in2.es to request a new QR code.

3. Completing the download: PIN Code Entry

Whether you followed the process with two devices or a single device, you will be prompted to enter a PIN code that you received by email. This PIN is crucial for verifying your identity and securing your credential. In case you have problems with this part, you will need to refresh the credential offer. For more details, see the section "Expiration of the Credential Offer " below.

Finalizing the Credential

Credential Ready for Use:

You now have your LEAR Credential ready for use in the Marketplace. That means that your CSP account is operational now, and you will be able to start listing your offerings in the Marketplace.

Expiration of the credential offer

Once you receive the email with the credential offer, you have 72 hours before the offer fully expires, requiring you to request a new one.

Once you have obtained a credential, the offer also expires and can no longer be reused.

Within this 72-hour period, you can obtain a credential QR code / link by accessing Step 2 as explained in the section "Receiving and Accepting the Credential Offer". This QR code is valid for 10 minutes. You can "refresh" (reset) this time by clicking the "Get a new credential offer" button. It also resets each time you access Step 2 again.

When 1 minute remains before the credential offer expires, a popup notification will appear, warning you of the remaining time. You can refresh the credential offer by clicking "Refresh". If you click "Leave", you will be redirected to the Issuer's homepage, the offer will expire, and you will need to request a new one.

If an error occurs during the credential retrieval process described in section"Completing the Download: PIN Code Entry" (e.g., entering an incorrect PIN or failing to enter it in time) and you retry the process, you will get an error message. In this case, you must refresh the offer as explained above.

7. Contact and Support

For further help, contact our technical support here.