NIS2 Compliance Guides
NIS2 Directive compliance for essential and important entities — entity classification, security measures, and incident reporting.
Does NIS2 Apply to My Company?
NIS2 — the EU's revised Network and Information Security Directive — expanded its scope dramatically compared to its predecessor.
4 min read
NIS2 for Data Centres
Data centres are explicitly named in NIS2 Annex I as essential entities under the digital infrastructure sector.
4 min read
NIS2 Entity Classification: Essential vs Important
NIS2 divides in-scope entities into two categories: essential entities and important entities.
4 min read
NIS2 Incident Reporting: Timelines Explained
NIS2 introduces a multi-stage incident reporting framework that is more demanding than NIS1.
5 min read
NIS2 Compliance Checklist for SaaS Companies
SaaS companies are one of the most commonly confused categories under NIS2.
4 min read
NIS2 vs ISO 27001: What's Missing?
Many companies already hold ISO 27001 certification and wonder whether this satisfies NIS2.
5 min read
Board Liability Under NIS2: What Directors Must Know
NIS2 is the first EU cybersecurity regulation that explicitly names boards and senior management as personally responsible for compliance.
4 min read
NIS2 for Cloud Service Providers
Cloud service providers — whether IaaS, PaaS, or SaaS meeting the directive's definition — are explicitly included in NIS2 Annex I as essential entities unde...
5 min read
NIS2 in Germany: BSI Implementation Guide
Germany is one of the largest NIS2 markets in the EU and has one of the most developed national cybersecurity regulatory frameworks.
4 min read
NIS2 in Ireland: NCSC Requirements for Companies
Ireland is one of the most important EU markets for NIS2 compliance.
4 min read
NIS2 Requirements for Managed Service Providers
Managed Service Providers (MSPs) are explicitly classified as essential entities under NIS2 — placed in the ICT service management sector of Annex I.
4 min read
NIS2 Supply Chain Security Requirements
NIS2's supply chain security provisions are one of the most operationally challenging aspects of the regulation.
4 min read
How to Build a NIS2-Compliant Incident Response Plan
A NIS2-compliant incident response plan is not just a document — it is an operational capability.
5 min read
NIS2 Security Measures: The Full Technical List
NIS2 Article 21 sets out the security measures that essential and important entities must implement.
4 min read
NIS2 vs SOC2: Do You Need Both?
SOC 2 is the dominant security certification for B2B SaaS in the US and has become widely expected by enterprise customers globally.
4 min read
ComplyOne automates your compliance documentation — RoPA, DPAs, gap assessments, and more.
Free compliance check