Physical security risk assessment
Before installing a security system, the law requires a risk analysis (Law 333/2003).

Mandatory compliance according to Law 333/2003, carried out by real experts. We prepare the physical security risk analysis through evaluators registered in the RNERSF, for the correct and legal sizing of security systems. The document puts you in legality and, more importantly, tells you exactly what protection you need — neither less nor more than is necessary.
What we include
- Objective and vulnerability analysis
- Evaluation report according to legislation
- Recommendations for technical and organizational measures
- Correlation with security system design
Frequently asked questions
Who is required by law to have a physical security risk assessment?
According to Law 333/2003, most units that hold valuables, handle cash or have activities that require security (commercial companies, institutions, stores, warehouses) must have a physical security risk analysis. Practically, almost any company with a headquarters and assets falls under its scope. Let's check your specific situation together.
What are the fines provided by the legislation in case of lack of risk analysis?
The lack of a risk analysis is sanctioned with substantial fines, and the authorities may also impose additional measures until remediation. In addition to the fine, in the event of an incident, the lack of the document puts you at a legal disadvantage and in your relationship with the insurer. The cost of the assessment is much lower than that of the risk of non-compliance.
How long is the physical security risk assessment report valid?
The analysis is usually reviewed every 3 years or whenever significant changes occur — change in the destination of the space, flows, managed values, or security incidents. We will notify you when the reassessment deadline is approaching. This way, you always remain in compliance.
What happens if the risk analysis finds that the current alarm systems are insufficient?
The report explicitly indicates the deficiencies and the minimum measures required (cameras, alarm, access control, security). As an authorized IGPR integrator, GreenSoft can then design and install exactly the systems required, closing the circle from a single source. This way you are not left with just a document, but with a complete solution.
What are the concrete steps in carrying out a risk assessment for a company in Constanta?
The assessor visits the location, analyzes the location, flows, values and vulnerabilities, then applies the legal methodology and prepares the report with recommended measures. The process usually takes a few working days from the visit. We guide you every step of the way, from scheduling to the final document.
Shall we discuss your project?
Free initial technical consultation and quote within 3–5 business days.






































