Commission Implementing Regulation (EU) 2015/1998Show full title

ANNEXU.K. List of persons and entities visited and interviewed

Providing the name of the entity, the name of the contact person and the date of the visit or interview.

ATTACHMENT 6-C3 U.K.

VALIDATION CHECKLIST FOR ACC3U.K.

ACC3 (Air cargo or mail carrier operating into the Union from a third country airport) designation is the prerequisite for carrying air cargo or air mail into the European Union(1) (EU) or Iceland, Norway and Switzerland and is required by Implementing Regulation (EU) 2015/1998.

ACC3 designation is in principle required for all flights carrying cargo or mail for transfer, transit or unloading at EU/EEA airports(2). The appropriate authorities of the Member States of the European Union, Iceland, Norway and Switzerland are each responsible for the designation of specific air carriers as ACC3. The designation is based on the security programme of an air carrier and on an on-site verification of the implementation in compliance with the objectives referred to in this validation checklist.

The checklist is the instrument to be used by the EU aviation security validator for assessing the level of security applied to EU/EEA bound air cargo or air mail by or under the responsibility of the ACC3 or an air carrier applying for ACC3 designation.

A validation report shall be delivered to the designating appropriate authority and to the validated entity within a maximum of one month after the on-site verification. Integral parts of the validation report shall be at least:

• the completed checklist signed by the EU aviation security validator and where applicable commented by the validated entity,

• the declaration of commitments (Attachment 6-H1 to Implementing Regulation (EU) 2015/1998) signed by the validated entity, and

• an independence declaration (Attachment 11-A to Implementing Regulation (EU) 2015/1998) in respect of the entity validated signed by the EU aviation security validator.

Page numbering, the date of the EU aviation security validation and initialling on each page by the validator and the validated entity shall be the proof of the validation report's integrity. By default the validation report shall be in English.

Part 3 — Security programme of the air carrier, Part 6 — Database, Part 7 — Screening and Part 8 — High risk cargo or mail (HRCM) shall be assessed against the requirements of Chapters 6.7 and 6.8 of the Annex to Implementing Regulation (EU) 2015/1998. For the other parts, baseline standards are the Standards and Recommended Practices (SARPs) of Annex 17 to the Convention on International Civil Aviation and the guidance material contained in the ICAO Aviation Security Manual (Doc 8973-Restricted).

Completion notes: U.K.

• All parts of the checklist must be completed. Where no information is available, this must be explained.

• After each part, the EU aviation security validator shall conclude if and to what extent the objectives of this part are met.

PART 1U.K. Identification of the entity validated and the validator

PART 2U.K. Organisation and responsibilities of the ACC3 at the airport

Objective: No air cargo or mail shall be carried to the EU/EEA without being subject to security controls. Details of such controls are provided by the following Parts of this checklist. The ACC3 shall not accept cargo or mail for carriage on an EU-bound aircraft unless the application of screening or other security controls is confirmed and accounted for by an EU aviation security validated regulated agent, an EU aviation security validated known consignor or an account consignor of a EU aviation security validated regulated agent, or such consignments are subject to screening in accordance with Union legislation.

The ACC3 shall have a process to ensure that appropriate security controls are applied to all EU/EEA bound air cargo and air mail unless it is exempted from screening in accordance with Union legislation and that cargo or mail is protected thereafter until loading onto aircraft. Security controls shall consist of:

• physical screening which shall be of a standard sufficient to reasonably ensure that no prohibited articles are concealed in the consignment, or

• other security controls which are part of a Supply Chain Security process that reasonably ensure that no prohibited articles are concealed in the consignment applied by EU aviation security validated regulated agents or known consignors or by an account consignor of a EU aviation security validated regulated agent.

Reference: Point 6.8.3

PART 3U.K. Security programme of the air carrier

Objective: The ACC3 shall ensure that its security programme includes all the aviation security measures relevant and sufficient for air cargo and mail to be transported into the EU.

The security programme and associated documentation of the air carrier shall be the basis of security controls applied in compliance with the objective of this checklist. The air carrier may wish to consider passing its documentation to the EU aviation security validator in advance of the site visit to help acquaint him with the details of the locations to be visited.

Reference: Point 6.8.2.1 and Attachment 6-G

Note: The following points listed in Attachment 6-G to Implementing Regulation (EU) 2015/1998 shall be appropriately covered:U.K.

PART 4U.K. Staff recruitment and training

Objective: The ACC3 shall assign responsible and competent staff to work in the field of securing air cargo or air mail. Staff with access to secured air cargo possess all the competencies required to perform their duties and are appropriately trained.

To fulfil that objective, the ACC3 shall have a procedure to ensure that all staff (permanent, temporary, agency staff, drivers, etc.) with direct and unescorted access to air cargo/air mail to which security controls are being or have been applied:

• have been subject to initial and recurrent pre-employment checks and/or background checks, which are at least in accordance with the requirements of the local authorities of the airport validated, and

• have completed initial and recurrent security training to be aware of their security responsibilities in accordance with the requirements of the local authorities of the airport validated.

Reference: Point 6.8.3.1

Note: U.K.

• A background check means a check of a person's identity and previous experience, including where legally permissible, any criminal history as part of the assessment of an individual's suitability to implement a security control and/or for unescorted access to a security restricted area (ICAO Annex 17 definition).

• A pre-employment check shall establish the person's identity on the basis of documentary evidence, cover employment, education and any gaps during at least the preceding five years, and require the person to sign a declaration detailing any criminal history in all states of residence during at least the preceding five years (Union definition).

PART 5U.K. Acceptance procedures

Objective: The ACC3 shall have a procedure in place in order to assess and verify upon acceptance the security status of a consignment in respect of previous controls.

The procedure shall include the following elements:

• verification of whether the consignment is delivered by a person nominated by the EU aviation security validated regulated agent or known consignor as listed in its database (Part 6) or an account consignor of such a regulated agent,

• verification of whether the consignment is presented with all the required security information (air waybill and security status information on paper or by electronic means) that corresponds to the air cargo and mail consignments being delivered,

• verification of whether the consignment is free from any signs of tampering, and

• verification of whether the consignment has to be treated as high risk cargo and mail (HRCM).

Reference: Point 6.8.3.1

Note: U.K.

• A regulated agent or a known consignor is an entity handling cargo which has been successfully validated by an EU aviation security validator or whose security measures have been included in the EU validated ACC3 security programme (in that case, the ACC3 is co-responsible for the security measures).

• An account consignor is an entity handling cargo for its own account under the responsibility of an EU aviation security validated regulated agent. This regulated agent fully accounts for the security controls applied by the account consignor.

• The person nominated corresponds to the person tasked to deliver the air cargo or air mail to the air carrier. The person delivering the consignment to the air carrier shall present an identity card, passport, driving license or other document, which includes his or her photograph and which has been issued or is recognised by the national authority.

PART 6U.K. Database

Objective: Where the ACC3 is not obliged to apply 100 % screening to EU/EEA bound air cargo or air mail, the ACC3 shall ensure the cargo or mail comes from an EU aviation security validated regulated agent or known consignor or an account consignor of a regulated agent.

For monitoring the security relevant audit trail the ACC3 shall maintain a database giving the following information for each entity or person from which it directly accepts cargo or mail:

• the status of the involved entity (regulated agent or known consignor),

• the company details, including the bona fide business address,

• the nature of the business, excluding business sensitive information,

• contact details, including those of the person(s) responsible for security,

• the company registration number, if applicable.

When receiving air cargo or mail the ACC3 has to check in the database whether the entity is listed. If the entity is not included in the database, the air cargo or air mail delivered by it will have to be screened before loading.

Reference: Points 6.8.4.1 and 6.8.4.3

PART 7U.K. Screening

Objective: Where the ACC3 accepts cargo and mail from an entity which is not an EU aviation security validated or the cargo received has not been protected from unauthorised interference from the time security controls were applied, the ACC3 shall ensure this air cargo or air mail is screened before being loaded onto an aircraft. The ACC3 shall have a process to ensure that EU/EEA bound air cargo and air mail for transfer, transit or unloading at an Union airport are screened by the means or methods referred to in Union legislation to a standard sufficient to reasonably ensure that it contains no prohibited articles.

Where the ACC3 does not screen air cargo or air mail itself, it shall ensure that the appropriate screening is carried out according to Union requirements. Screening procedures shall include where appropriate the treatment of transfer-/transit-cargo and -mail.

Where screening of air cargo or mail is performed by or on behalf of the appropriate authority in the third country, the ACC3 receiving such air cargo or air mail from the entity shall declare this fact in its security programme, and specify the way adequate screening is ensured.

Reference: Points 6.8.3.1, 6.8.3.2, 6.8.3.3

PART 8U.K. High risk cargo or mail (HRCM)

Objective: Consignments which originate from or transfer in locations identified as high risk by the EU or which appear to have been significantly tampered with are to be considered as high risk cargo and mail (HRCM). Such consignments have to be screened in line with specific instructions. High risk origins and screening instructions are provided by the appropriate EU/EEA authority having designated the ACC3. The ACC3 shall have a procedure to ensure that EU/EEA bound HRCM is identified and subject to appropriate controls as defined in the Union legislation.

The ACC3 shall remain in contact with the appropriate authority responsible for the EU/EEA airports to which it carries cargo in order to have available the latest state of information on high risk origins.

The ACC3 shall apply the same measures, irrespective of whether it receives high risk cargo and mail from another air carrier or through other modes of transportation.

Reference: Points 6.7 and 6.8.3.4

Note: HRCM cleared for carriage into the EU/EEA shall be issued the security status ‘SHR’, meaning secure for passenger, all-cargo and all-mail aircraft in accordance with high risk requirements.U.K.

PART 9U.K. Protection

Objective: The ACC3 shall have processes in place to ensure EU/EEA bound air cargo and/or air mail is protected from unauthorised interference from the point where security screening or other security controls are applied or from the point of acceptance after screening or security controls have been applied, until loading.

Protection can be provided by different means such as physical (barriers, locked rooms, etc.), human (patrols, trained staff, etc.) and technological (CCTV, intrusion alarm, etc.).

EU/EEA bound secured air cargo or mail should be separated from air cargo or mail which is not secured.

Reference: Point 6.8.3

PART 10U.K. Accompanying documentation

Objective: The ACC3 shall ensure that:

Reference: Points 6.3.2.6 (d), 6.8.3.4 and 6.8.3.5

Note: the following security statuses may be indicated:U.K.

• ‘SPX’, meaning secure for passenger, all-cargo and all-mail aircraft, or

• ‘SCO’, meaning secure for all-cargo and all-mail aircraft only, or

• ‘SHR’, meaning secure for passenger, all-cargo and all-mail aircraft in accordance with high risk requirements.

In the absence of a regulated agent, the ACC3 or an air carrier arriving from a third country exempted from the ACC3 regime may issue the security status declaration.

PART 11U.K. Compliance

Objective: After assessing the ten previous parts of this checklist, the EU aviation security validator has to conclude if its on-site verification corresponds with the content of the part of the air carrier security programme describing the measures for the EU/EEA bound air cargo/air mail and if the security controls sufficiently implements the objectives listed in this checklist.

For your conclusions distinguish between four possible main cases:

Name of the validator:

Date:

Signature: