CE Patch Compliance for UK MSPs
Patch14 monitors your clients' cloud assets against the 14-day Danzell v3.3 rule — automatically — and tells you exactly which clients are at auto-fail risk, before the assessor does.
Why It Matters Now
Danzell v3.3 changed the rules. Under the previous standard, auditors could accept mitigating controls when a patch was applied late. Under v3.3, a single critical CVE unpatched beyond 14 days fails the entire Cyber Essentials certification — no exceptions, no mitigation accepted.
For MSPs managing CE client renewals, there is a clock running right now on every critical CVE published to the NVD — whether you know about it or not. The patch-available date is Day 0. Day 14 is the auto-fail. Most MSPs find out on Day 16.
📋 Cyber Resilience Pledge (April 2026)
UK defence, NHS, and government supply chain primes now require CE certification from all Tier 1 suppliers. Approximately 220,000 UK SMEs are affected. MSPs serving these supply chains are under immediate pressure to offer CE compliance monitoring as a managed service.
UK organisations hold CE certification
CE renewals per month in the UK
is now the hard auto-fail deadline under Danzell v3.3
How It Works
Patch14 connects to Microsoft Intune (Azure Defender) via API and syncs your client asset inventory daily. No spreadsheets. No manual uploads.
The NVD CVE feed is ingested daily. Patch14 matches every published high or critical CVE against your client asset inventories — identifying which clients are affected before you have to ask.
For every CVE that affects a client asset, Patch14 starts a countdown from the patch-availability date — anchored to the exact Danzell v3.3 rule. Green. Amber (approaching). Red (critical).
At Day 10 and Day 13, Patch14 alerts you before a CE auto-fail. Once patched, the event is logged and the CE evidence pack is ready for CB submission.
Features
Always-current inventory, no manual updates. Patch14 syncs with Microsoft Intune (Azure Defender) daily — so the asset list the compliance clock runs against is never stale.
The 14-day clock starts when NIST says so. Patch14 cross-references the NVD CVE feed against your client estate daily, anchoring each countdown to the patch-available date under Danzell v3.3.
Every critical CVE. Every client. Every day. The Patch14 countdown tracks the 14-day CE window per vulnerability per asset — so you know exactly how much time you have before an auto-fail.
Compliance status in three colours. Green means CE is safe. Amber means a CVE is approaching the window. Red means you have days left. No spreadsheet, no guesswork, no surprises.
From 4 hours to 15 minutes. Patch14 generates the CE evidence pack from your continuous monitoring log — structured for CB submission at renewal time.
Two warnings before the deadline. Email alerts at day 10 and day 13 of the 14-day window — enough time to escalate, patch, and document before the auto-fail clock expires.
MSP Partner Programme
Patch14's MSP Partner tier gives you a single dashboard across every CE client — updated daily, alert-driven, and evidence-ready at renewal time. Add “CE Compliance Monitoring” to your service catalogue at £35–50/client/month. At £25/month cost, the margin runs from day one.
Multi-tenant dashboard
All clients, one view, CE status per client. No logging in and out of separate environments.
White-label evidence packs
Evidence packs and monthly reports branded with your MSP logo.
Aggregate alert feed
One notification when any client reaches day 10 or day 13, across your entire client estate.
Revenue calculator
Trusted by UK MSPs
"We had a client fail CE in 2025 on a CVE that was patched on day 16. That client went to a competitor MSP. Patch14 is the tool that makes sure that never happens again — it caught three clients approaching the window in our first month."
[Name], Managing Director
[MSP Name] — Yorkshire
"I needed to productise CE compliance monitoring as a billable service. Patch14 gave me the multi-tenant dashboard and the white-label evidence pack I needed to price it for clients. We're now billing it as a named line item across 18 clients."
[Name], Head of Security
[MSP Name] — Manchester
"I used to spend half a day per month preparing CE compliance evidence for our prime contractor. Patch14 cut that to under 20 minutes. The evidence pack it generates maps directly to what the CB assessor needs."
[Name], IT Manager
[Defence supplier] — London
Placeholder stats — replace with real numbers at launch. Target “14 UK MSPs” as the launch milestone.
Pricing
All tiers include a 30-day free pilot — no credit card required.
In-house IT teams managing CE directly.
Up to 50 endpoints · £149/mo for 51–250
Save 2 months — £790/year
Not included: Multi-tenant MSP dashboard · White-labelling · API access
Start your free pilot →MSPs managing CE across multiple client estates.
Minimum 5 clients · £20/client/month above 20
£270/client/year
Not included: White-label domain · API access · Dedicated account manager
Book a partner call →MSPs selling CE compliance as a white-labelled managed service.
Up to 30 clients · custom above 30
Annual commitment
Is the free pilot really free — no credit card?
Yes. You get 30 days of full access (Partner tier) for up to 5 clients, with no credit card required and no automatic conversion at the end. We want you to see real compliance status for real clients before you make any commitment.
How does billing work for MSP Partner?
You pay £25/client/month for each client estate you connect to Patch14. You can add and remove clients at any time; billing adjusts monthly. Volume pricing (£20/client/month) kicks in automatically above 20 active clients.
Does Patch14 replace my RMM?
No. Your RMM deploys patches; Patch14 proves you deployed them in time for CE. They are complementary. Patch14 does not push patches or manage endpoints — it tracks the CE compliance clock and generates the audit evidence.
What if the Danzell v3.3 rules change again?
We monitor IASME publications and update Patch14's compliance logic with every new Danzell version. As an IASME Technology Partner, we are notified of scheme changes in advance of public announcement.
Start a 30-day free pilot. Connect your first client in under 15 minutes. See their live CE compliance status before you close your laptop today.
No credit card · UK data only · Cancel anytime · IASME Technology Partner