💡 📊 Assessments — When and how to re-run a NexCyber assessment, what gets carried over from previous runs, and how your Trust Passport refreshes.

Re-running assessments — what changes

Compliance is a moving target. New regulatory guidance lands every quarter, your evidence library grows, your product evolves, and your readiness picture changes. NexCyber is built around the assumption that you'll re-run assessments regularly — and the second, third, tenth runs should be dramatically faster than the first.

This article explains when to re-run, what carries over, and how your Trust Passport / MRCC Certificate behave across re-runs.

When to re-run

Recommended triggers :

• You closed a gap — uploaded new evidence, deployed a new policy, achieved a new certification.
• Your scope changed — new product line, new region, new business unit.
• The regulation moved — new implementing act, RTS, ENISA guidance, sectoral interpretation.
• Trust Passport expiry approaching — typically every 6 to 12 months.
• Before a high-stakes conversation — auditor visit, RFP response, board update.

Most companies settle into a quarterly cadence plus event-driven re-runs.

What carries over

When you click "Re-run assessment" on a previous result, NexCyber pre-fills :

• Your company profile (always current, no re-entry).
• Your previous answers — you only need to update what changed.
• Your evidence library — every previously-uploaded document stays linked to the obligations it supports.
• Your scope (company-wide vs product-scoped) — you can override if needed.

A typical re-run takes 2 to 5 minutes instead of the 12 to 15 of the first run.

What changes regulation-side between runs

NexCyber continuously ingests :

• New EU regulatory acts (implementing acts, RTSs, delegated acts).
• ENISA / EBA / ESMA / EIOPA / SRB technical guidance.
• National competent authority interpretations.
• Harmonised standards updates (EN 18031, ETSI publications).

If anything material changed since your last run that affects an obligation you previously answered, the re-run flags it as "Review needed" — your prior answer remains valid until you confirm it still holds.

What changes evidence-side

If any evidence document expired since your last run (e.g. an ISO 27001 certificate that lapsed), the obligations relying on it are automatically flagged. You don't have to track expiry dates yourself.

Score evolution

Each run is dated. Your dashboard shows a score history chart — typically going up over time as you close gaps. Re-running with no change does not move your score ; only real evidence does.

Trust Passport on re-run

A new Trust Passport is issued automatically after each completed re-run, with :

• A new issue date.
• A new expiry date (6 or 12 months forward).
• A new unique ID (so the previous Passport URL still verifies as authentic-but-superseded).

If you've embedded a Passport badge on your website, it auto-updates to the new Passport — no manual link change needed.

MRCC Certificate on re-run

MRCC re-issuance is faster than the first issuance :

• No material change — light re-validation, 2 business days.
• Scope change or new regulation — delta review only on the changed parts, 3-4 business days.
• Annual renewal — automatic reminder, click "Renew", review starts.

The previous MRCC remains verifiable indefinitely (with a "superseded" banner pointing to the new one).

Cost of re-running

Re-running an assessment is always free — there's no per-assessment fee on any plan. You're paying for the platform, the regulatory intelligence, and (on Portfolio+) the expert review for MRCC.

→ See "Reading your assessment results" → See "Understand your Trust Passport"

💬 Need help?

• Reach out via our live chat (bottom-right) — Captain AI replies instantly, human experts within business hours.
• Email support@nexcyber.eu with [P1] for Command/Strategic priority issues.

ℹ️ Disclaimer — RICE provides a readiness analysis, not legal advice. Final compliance may require legal review or notified body certification.

Last reviewed: 2026-06-02 · NexCyber Help Center