Standards & Compliance

ISO 27001 is an international standard for Information Security Management Systems (ISMS). It provides a framework for establishing, implementing, maintaining, and continually improving an organization’s information security management system.

The Critical Entities Resilience Directive lays down obligations on EU Member States to take specific measures, to ensure that essential services for the maintenance of vital societal functions or economic activities are provided in an unobstructed manner in the internal market.

SOC 2 is a voluntary compliance standard for service organizations, developed by the American Institute of CPAs (AICPA), which specifies how organizations should manage customer data.

Coming into effect on January 16, 2023, the NIS2 Directive is a continuation of the EU cybersecurity directive, NIS. Member States had until October 17, 2024 to transpose the Directive into national law. This means that affected organizations are now legally obligated to meet its requirements.

The Digital Operational Resilience Act (DORA) is an EU regulation strengthening the financial sector’s digital resilience. It sets clear standards for financial firms and third-party providers to manage technology risks—including governance, incident reporting, and testing—to ensure continuous operations, even under severe disruptions.

Is the International Standard that allows organizations of all types to prevent, detect and address bribery by adopting a range of measures including, anti-bribery policies, staff to oversee anti-bribery compliance, training, risk assessments and more.