What does a typical EU public-sector CCTV tender require?

Standard requirements in 2026: EN 62676-4 DORI compliance per camera, NDAA Section 889 compliance flagging if the procurement crosses US-aligned partners, GDPR DPIA appendix for any system processing employee or visitor data, multi-vendor parity (catalog must include at least 3 alternative manufacturers per spec), DXF or BIM interchange for the building services contractor, language coverage for the tender's languages (typically national + English), and EU data residency where the tender includes public-sector users.

How is NDAA compliance verified in tender responses?

Bidders must produce a manufacturer × model × NDAA-status matrix for every camera in the BOM, citing the latest NDAA covered list (Hikvision, Dahua, Hytera, Huawei, ZTE and OEM variants). Some procurement bodies also require the design tool's audit trail showing which cameras were considered and why specific NDAA-clean alternatives were chosen — this is where vendor-locked design tools (Hikvision HiTools, Dahua PDT, AXIS Site Designer) fail because they cannot show an alternative that doesn't exist in their catalog.

What is the standard DXF / BIM deliverable?

AutoCAD-compatible DXF (R12 through 2018) is the floor-plan deliverable for cabling and electrical contractors. Revit RVT is increasingly requested for new-build projects but remains optional for retrofits. The DXF must include camera locations as labelled blocks, FOV cones as polygons, cable run polylines with length annotations, and BOM table either embedded as INSERT or attached as separate CSV. The CCTVplanner DXF export includes all of these by default.

Why do tenders specify EU hosting?

Public-sector tenders increasingly require that customer data — site survey photographs, floor plans, BOM, project files — never leaves the EU. This is driven by GDPR Schrems II, Privacy Shield's invalidation, and growing concern about US Cloud Act exposure. Practical implication: design tools hosted on US-based AWS/GCP/Azure (or the same with multi-region replication that touches US) often disqualify automatically. EU-only hosted tools (Polish lh.pl + Supabase EU-West for CCTVplanner) clear this requirement.

Procurement · Public Sector · Updated 2026-05-05

Commercial CCTV design tender — 2026 deliverables checklist

EU and UK public-sector CCTV tenders have converged on a recognisable shape over the past three years: EN 62676-4 DORI tier per camera, NDAA Section 889 swap matrix, GDPR DPIA appendix, multi-vendor BOM, DXF/BIM interchange, language coverage, EU hosting. This checklist runs through what the technical scoring panel will actually look for.

1. EN 62676-4 DORI tier per camera

The procurement spec will list operational tasks per zone — "identify face at parking entrance", "recognise plate at gate", "observe activity in storage area" — each mapping to a DORI tier (250 / 125 / 62.5 / 25 px/m). The tender response must show, for every camera proposed, which tier it achieves at the specified distance. Vendor design tools that don't produce DORI overlays fail this requirement at the technical scoring stage.

CCTVplanner emits the DORI ring for every camera placed; the export PDF labels each camera with its achieved tier per task. The DPIA appendix uses the same overlay to demonstrate proportionality of capture.

2. NDAA Section 889 swap matrix

Increasingly required even outside US-funded projects, particularly in NATO-adjacent procurement. The deliverable is a manufacturer × model × NDAA-status matrix for every camera in the BOM, plus — where any non-compliant model is proposed — the documented compliant alternative considered and the technical rationale for the final choice.

CCTVplanner flags every camera with NDAA status and offers one-click swap to NDAA-clean alternatives (Axis, Bosch, Hanwha, i-PRO matched on sensor, lens range, IR distance, IP rating). The audit trail exports as part of the BOM CSV.

3. GDPR DPIA appendix

Any tender involving employee monitoring, public-space coverage, or processing of biometric features (face recognition, ANPR) requires a Data Protection Impact Assessment under Article 35 GDPR. The DPIA documents the lawful basis, the proportionality balancing test, the alternatives considered, the FOV minimisation measures, the retention period, the data flows, and the residual risks.

The FOV map per camera is the central evidence in the DPIA proportionality argument — the reviewer needs to see exactly what each camera captures and the smallest configuration that achieves the security purpose. CCTVplanner exports the labelled FOV map directly as PDF for the DPIA appendix.

4. Multi-vendor BOM with cost roll-up

EU tenders typically require the bidder to demonstrate that the proposed catalog is not vendor-locked — at least three independent manufacturers must be considered for each spec line. The BOM deliverable is per-camera SKU + accessories + cable run length + PoE class + IP/IK rating + cost, with the alternative considered and the technical rationale.

Tools that ship a single-vendor catalog (Hikvision HiTools, Dahua PDT, AXIS Site Designer) cannot produce this directly. CCTVplanner's 79-brand catalog clears this hurdle and the BOM CSV export includes the full multi-vendor matrix.

5. DXF or BIM interchange

Cabling, electrical and trenching contractors work in AutoCAD or Revit. The CCTV design must export to DXF (R12 through 2018) with camera positions as labelled blocks, FOV cones as polygons, cable run polylines with length annotations, and either embedded BOM or attached CSV. For new-build projects, Revit RVT is increasingly requested.

CCTVplanner's DXF export covers BLOCK / INSERT / SPLINE / ELLIPSE / HATCH / DIMENSION — full coverage matching the AutoCAD reference DXF format spec. The export is bidirectional: import the architect's DXF floor plan, design on top, export the annotated DXF back.

6. Language coverage and EU hosting

Multi-country EU tenders increasingly require deliverables in every language of the procuring authorities. For a project spanning Poland, Germany, France, Italy and Spain, that's five languages plus English minimum. Tools that don't ship the language coverage either disqualify or force the bidder to outsource translation.

EU hosting is the other emerging hard requirement. Schrems II and the US Cloud Act have made non-EU hosting of customer data — site surveys, floor plans, BOM — a disqualifier in growing numbers of EU public-sector tenders. Polish lh.pl frontend + Supabase EU-West backend keeps customer data inside EU jurisdiction; US-hosted SaaS design tools (cctvdesigntool.com, IPVM Calculator, FLIR Raven) increasingly fail this test.

7. Cable schedule, PoE budget and switch sizing

The technical evaluation looks for the cable schedule (per-camera run length and category), PoE budget per switch (sum of camera draw + heater allowance for outdoor cameras), switch port count and PoE class capability, and uplink sizing per the bandwidth math. The mistake-cost here is high — undersized PoE budget at install means the contractor returns to swap switches, which adds days to commissioning.

CCTVplanner emits the cable schedule and PoE budget alongside the BOM, with daisy-chain support for multi-floor topology. The bandwidth math from the bandwidth calculator drives the uplink sizing recommendation.

Build a tender-ready design package — free

Multi-vendor BOM, FOV map per camera, DORI overlay, DXF I/O, EU-hosted. Free tier covers 1 project; Standard at €5/mo unlocks unlimited.

NDAA Section 889 reference →

Full list, swap matrix, audit-ready BOM.

EN 62676-4 Calculator →

DORI tier per camera with corridor-mode support.