Appearance
Use the NDSA Levels of Preservation when you need a fast, low-cost way to assess and prioritise the technical resilience of a digital collection — they shine for self-assessment, gap-finding and year-on-year progress reporting. Avoid relying on them alone for formal certification, rights and legal questions, or organisational maturity, where OAIS, CoreTrustSeal or the DPC RAM fit better. The Levels are a planning compass, not an audit standard.
What exactly are the NDSA Levels?
They are a matrix of five functional areas assessed across four levels of increasing capability. The areas in the current (v2) revision are Storage, Integrity, Control, Metadata and Content.
| Level | Theme | Plain-language goal |
|---|---|---|
| 1 | Know your content | You have copies and basic inventory |
| 2 | Protect your content | Multiple copies, fixity, restricted access |
| 3 | Monitor your content | Audit copies, check fixity on a schedule |
| 4 | Sustain your content | Repair from copies, manage formats, full provenance |
You score each functional area independently, so a real programme might be Level 3 for Storage but Level 1 for Metadata — and that uneven profile is exactly the useful signal.
When are the Levels the right tool?
Reach for them when:
- You are starting out and need to know your weakest link quickly.
- You must justify a storage or staffing request and want evidence of a gap.
- You want a repeatable annual metric to show trustees you are improving.
- You are triaging many collections and need to rank them by risk.
A half-day workshop with the matrix usually surfaces the one or two areas dragging the whole programme down.
When should I NOT use the NDSA Levels?
The Levels assume you already hold the content and focus on keeping bytes safe and usable. They are deliberately silent on:
- Rights, licensing and legal deposit — covered by your rights workflow, not the Levels.
- The designated community and access — an OAIS concern.
- Organisational capability and funding — better served by the DPC Rapid Assessment Model.
- Formal certification — use CoreTrustSeal, nestor or ISO 16363.
If an auditor asks "are you a trustworthy repository?", the Levels are evidence, not an answer.
How do I actually run an assessment?
Build a simple scoring sheet — a spreadsheet is fine — and record both the current score and the target with a date.
text
Functional area Current Target By
Storage 3 4 2026-06
Integrity 2 3 2025-12
Control 2 2 —
Metadata 1 3 2026-06 <- weakest link
Content 2 2 —The <- flag on Metadata is the output that matters: it tells you where the next pound of effort buys the most resilience. Re-run it every year and keep the dated copies so the trend is visible.
Should I aim for Level 4 everywhere?
Almost never. Pushing every collection to Level 4 means continuous format monitoring, full provenance capture and routine repair — real recurring cost. Instead, set Level 4 only for irreplaceable, high-value content (unique born-digital archives, master scans of fragile originals) and let routine derivatives sit comfortably at Level 2. Matching level to value is the whole point of the model.
How do the Levels relate to other frameworks?
Think of a layered stack: NDSA Levels for the technical core, OAIS for the conceptual model and functions, the DPC RAM for organisational maturity, and CoreTrustSeal for external certification. They complement rather than compete. A common pattern is to drive your annual technical improvements with the NDSA Levels, then map those gains onto an OAIS-shaped policy for governance.
Key Takeaways
- The NDSA Levels are a five-area, four-level self-assessment for technical resilience.
- Use them for fast gap-finding, prioritisation and year-on-year progress evidence.
- Score each area independently — the uneven profile reveals your weakest link.
- They do not cover rights, designated community or certification; pair with OAIS/RAM/CoreTrustSeal.
- Aim for Level 4 only on irreplaceable content; Level 2-3 is fine elsewhere.
- Re-run annually and keep dated copies to show a trend, not just a snapshot.
- They are a planning compass, not a standard you can be certified against.
Frequently Asked Questions
What are the NDSA Levels of Preservation?
They are a tiered self-assessment matrix from the US National Digital Stewardship Alliance, organised into five functional areas (Storage, Integrity, Control, Metadata, Content) across four maturity levels, from 'know your content' up to 'repair your content'.
When should I not use the NDSA Levels?
They are weak for legal, rights and designated-community questions, and they assume you already hold the content. For trustworthy-repository certification or a full audit, pair or replace them with OAIS, CoreTrustSeal or the DPC RAM.
Do I have to reach Level 4 in everything?
No. Level 4 in every area is rarely cost-justified. Most programmes deliberately sit at Level 2-3 and only push specific high-value collections to Level 4 where loss would be catastrophic.
How long does an NDSA Levels assessment take?
A first pass for a small archive takes a half-day workshop; the value is in repeating it annually to show movement, not in the single score.
How do the NDSA Levels relate to the DPC RAM?
Both are maturity models. The NDSA Levels are lighter and storage/integrity-focused; the DPC Rapid Assessment Model is broader, covering organisational and service capabilities. Many teams use NDSA for the technical core and RAM for the wider programme.
Are the NDSA Levels a standard you can be certified against?
No. They are a self-assessment and planning tool, not a certification scheme. Certification routes are CoreTrustSeal, nestor and ISO 16363.