Ga naar inhoud

Regulations: NIS2, GDPR, DORA and the Dutch Cyber Security Act

Regulation touches board accountability, security operations and compliance at once. This hub routes you to the right deep-dive pages.

Book an informal conversation

ISO Ready helps you align policy, risk, and evidence — without endless document churn.

Check your NIS2 gaps

Regulation in cyber and compliance spans NIS2, GDPR, DORA and the Dutch Cyber Security Act (Cbw). Use this hub to pick the right deep dive.

Theme pages

Build one ISMS narrative — see also ISO 27001 certification and NIS2 compliance. Educational — not legal advice.

Key takeaways

  • NIS2 and the Dutch Cbw emphasise supply chain and incident reporting.
  • GDPR remains a separate discipline alongside ISO 27001.
  • DORA applies to financial entities and critical ICT providers in the EU.
  • Use one ISMS so evidence does not fork across frameworks.

Veelgestelde vragen

Where do I start if several laws apply?
Clarify sector, supply-chain position and contracts, then open the NIS2, GDPR, DORA and Cbw theme pages.

Run the ISO 27001 readiness scan

See where you stand before investing in documents or consultants.

Start the readiness scan