In order to ensure neutrality in relation to technology and business models, mention of the ISO standard 27001 and HTTPS over TLS was removed in the final RTS draft.