CCRArecognition for components up to EAL 2 and ALC_FLR only Y [M4 GENTRO GRIPTOLOGIGO NACIONAL CERTIFICATE CCN-CC-48/2025 GEOPO2 on GSE20Security Chip, version 1.0 Type of product Tarjetas inteligentes y dispositivos similares Conformanceof functionality PP Conformancefunctionality Protection Profile Conformance Java Card System — Open Configuration Protection Profile, 3.1, April 2020 Evaluation Facility Applus Laboratories Certification Report CCN-CC/2024-10/INF-4699 Expiration Date See Certification Report Pursuant to the authority vested in me underAct 11/2002 regulating the National Intelligence Centre, and under Article 1 and Article 2.2.c of Royal Decree 421/2004 of March 12th regulating the National Cryptologic Centre, | hereby: Certify that the security of GEOPO2 on GSE20 Security Chip, version 1.0, requested by Shenzhen Goodix Technology Co., Ltd., Floor 13, Phase B, Tengfei Industrial Building, Futian Freetrade Zone, Shenzhen, China, 518000, has been evaluated using Common Methodology for Information Technology Security Evaluation/CommonCriteria for Information Technology Security Evaluation version 3.1 release 5, and it has met the requirements of its Security Target identified as “: Security Target of GEOPO2 on GSE20 Security Chip v1.9 (10 October 2025).”, for evaluation assurance level EAL5+ (ALC_DVS.2,AVA_VAN.5). Madrid, 22 December 2025 Secretary of State Director speranza Casteleiro Llamazares This certificate, its scope and validity are subject to the terms, conditions and requirements specified in the “Reglamento de Evaluación y Certificación de la Seguridad delas T.1.C.” at PRE/2740/2007, September 19th. ENAC CERTIICACION N°45 / C-PRIIO The above-mentionedSecurity Target and Certification Report are available at the National Cryptologic Centre. This certificate will come into effect the following day that the associated certificate resolution signed by the Secretary of State Director of CCN is published in the Official State Gazette (B.O.E — https://www.boe.es). The IT product identified in this certificate has been evaluated at an accredited and licensed/approved evaluation facility using the Common Methodology for Information Technology Security Evaluation/Common Criteria for Information Technology Security Evaluation version 3.1 release 5 and CC Supporting Documentsaslisted in the Certification Report. This certificate applies only to the specific version and release of the productin its evaluated configuration and in conjunction with the complete Certification Report. The evaluation has been conducted in accordance with the provisions of the Spanish IT Security Evaluation and Certification Scheme, PRE/2740/2007 Septemberthe 19th, and the conclusions of the evaluation facility in the evaluation technical report are consistent with the evidence adduced. This certificate is not an endorsementof the IT product by the Spanish Scheme orby any otherorganisation that recognises orgives effect to this certificate, and no warranty of the IT product by the Spanish Schemeorby anyother organisation that recognisesor gives effect to this certificate, is either expressed or implied.