no mandatory third-party auditor is required. The provider must follow a defined conformity assessment procedure, prepare technical documentation, implement a quality management system, and draw up an EU Declaration of Conformity.