Your path to EU cybersecurity compliance

Our mission is simple: make EU cybersecurity compliance accessible to everyone, from individual developers to growing startups to established enterprises. We believe compliance shouldn't be a barrier to innovation.

Take Compliance Scan Start with CRA Browse All Tools

100% Free

Quick & Easy

Plain English

Practical Tools

Why We Built This Website

EU cybersecurity laws are confusing. We make them simple and practical with ready-to-use tools and templates.

The Problem We Solve

Legal jargon is overwhelming: EU regulations are written for lawyers, not business owners or developers.

Expensive consultants: Professional compliance advice costs thousands of euros, putting it out of reach for small businesses.

No clear starting point: With multiple overlapping laws, most people don't know which ones apply to their situation.

Fear of hefty fines: Non-compliance penalties can reach millions of euros, but the rules aren't clear enough to follow.

How We Help You

Plain English explanations: We translate complex legal requirements into practical steps anyone can understand and follow.

Free practical tools: Interactive checklists, gap analysis tools, and step-by-step guides that cost nothing and require no signup.

Personalized guidance: Our compliance scan tells you exactly which laws apply to your specific situation, saving time and confusion.

Start free, upgrade when needed: Essential tools and guides are always free. Advanced features and personalized consulting available for those who need extra support.

Who This Website Helps

Small & Medium Businesses

Companies that need to comply but can't afford expensive legal advice. Get practical guidance that fits your budget (free) and timeline.

Developers & Tech Teams

Technical professionals who need to implement compliance requirements but don't speak legal. Get actionable technical guidance.

Compliance & Legal Teams

Professionals who need clear, practical resources to explain complex requirements to non-legal stakeholders and implement solutions.

EU Compliance Scanner

Get your personalized compliance roadmap in 2 minutes. No guesswork, no confusion – just clear next steps.

Why Start Here?

With 7+ overlapping EU cybersecurity laws, most people waste time researching regulations that don't even apply to them. Our compliance scan cuts through the confusion by asking simple questions about your business and current standards (like ISO 27001, NIST, etc.).

What You Get:

• Clear "Yes/No" for each law
• Reasoning behind each decision
• Standards mapping (ISO, NIST, etc.)
• Priority order for implementation
• Personalized next steps

What Happens Next:

• Website filters to show only relevant content
• Direct links to your specific tools
• Skip irrelevant regulations entirely
• Focus on what actually matters

Pro tip: Even if you think you know which laws apply, take the scan anyway. Many businesses discover they're missing important requirements or worrying about laws that don't affect them.

Takes 2 minutes

100% Free

No data stored

Start Your Free Compliance Scan

Get personalized results showing which laws apply to your business and which don't, plus explanations for each.

NEW: Free Tools & Gap Analysis Available

Compliance tools you'll actually use

Professional-grade compliance tools, simplified for real people. Everything you need to get compliant fast.

Features you'll love

AutoComplete Questions

Smart forms that adapt to your answers, skipping irrelevant questions automatically

Export to PDF & Word

Download your compliance reports and action plans in professional formats

Progress Tracking

Visual dashboards showing your compliance progress and what's left to do

High

Cyber Resilience Act (CRA) Compliance Hub

For anyone selling digital products in Europe - IoT devices, apps, smart gadgets, etc.

Get Action Plan (5 min) All Tools & Guides

Available Tools:

Gap Analysis Tool Product checker Compliance checklist +1 more

Active

NIS2 Directive Compliance Hub

For essential service providers - energy, transport, banking, healthcare, etc.

Get Action Plan (5 min) All Tools & Guides

Available Tools:

Gap Analysis Tool Risk assessment Incident reporting guide +1 more

Active

GDPR Data Protection Compliance Hub

For anyone handling personal data of EU residents - websites, apps, services.

Get Action Plan (5 min) All Tools & Guides

Available Tools:

Gap Analysis Tool Privacy policy generator Cookie checker +1 more

Active

Digital Services Act (DSA) Compliance Hub

For online platforms, marketplaces, social media, hosting services.

Get Action Plan (5 min) All Tools & Guides

Available Tools:

Gap Analysis Tool Platform checker Content rules guide +1 more

Built on Proven Standards

Don't reinvent the wheel. We map EU cybersecurity laws to established international standards you might already follow, helping you leverage existing compliance frameworks and avoid duplicate work.

Leverage Existing Work

Map your ISO 27001 or IEC 62443 controls directly to EU requirements

Avoid Duplicate Effort

See where your current standards already meet EU law requirements

Fill the Gaps

Identify exactly what's missing from your current compliance approach

ISO

ISO 27001

Information Security Management

✓ 85% overlap with NIS2

IEC

IEC 62443

Industrial Cybersecurity

✓ 70% overlap with CRA

NIST

NIST CSF

Cybersecurity Framework

✓ 80% overlap with NIS2

SOC

SOC 2

Service Organization Control

✓ 75% overlap with GDPR

CIS

CIS Controls

Center for Internet Security

✓ 90% overlap with NIS2

COBIT

COBIT 2019

IT Governance Framework

✓ 75% overlap with GDPR

ISO

ISO 31000

Risk Management

✓ 70% overlap with NIS2

ISO

ISO 22301

Business Continuity

✓ 60% overlap with NIS2

ENISA

ENISA Guidelines

EU Cybersecurity Agency

✓ 95% overlap with NIS2

Detailed Law-to-Chapter Mappings

Individual charts for each EU law showing comprehensive article-to-standard chapter mappings. Select a law to see detailed compliance relationships.

How to Read

Cell Numbers: Connection strength (1-10 scale)

Cell Color: Darker = stronger connection

Gray cells: No direct mapping

Columns: Law articles (horizontal axis)

Rows: Standard chapters (vertical axis)

Current Law

Loading law details...

EU Cybersecurity Laws and Compliance Resources

Complete guide to European Union cybersecurity regulations including Cyber Resilience Act (CRA), Network and Information Security Directive (NIS2), General Data Protection Regulation (GDPR), Digital Services Act (DSA), AI Act, eIDAS 2.0, and Medical Device Regulation (MDR).

Free Compliance Tools and Resources

Free gap analysis tools, compliance checklists, step-by-step guides, risk assessments, and practical implementation advice for EU cybersecurity compliance. No registration required.

Standards Mapping and Integration

Map EU cybersecurity laws to ISO 27001, IEC 62443, NIST Cybersecurity Framework, IEEE 802, SOC 2, PCI DSS, CIS Controls, COBIT 2019, ISO 31000, ISO 22301, ENISA Guidelines, Common Criteria, ITIL 4, FAIR Risk Analysis, CSA Cloud Controls Matrix, SANS Top 20, and other international standards. Leverage existing compliance frameworks, avoid duplicate effort, and identify gaps between current standards and EU requirements.

Cyber Resilience Act (CRA) Compliance

CRA compliance guide for products with digital elements, IoT devices, software, hardware, embedded systems, connected devices, smart appliances, industrial control systems, automotive software, medical devices with digital components, cybersecurity requirements, vulnerability disclosure, incident reporting, risk assessment, essential requirements, conformity assessment, CE marking, technical documentation, post-market surveillance.

NIS2 Directive Implementation

NIS2 compliance for essential services, important entities, critical infrastructure, energy sector, transport, banking, financial services, healthcare, drinking water, wastewater, digital infrastructure, ICT services, public administration, space, cybersecurity risk management, incident reporting, supply chain security, business continuity, crisis management, vulnerability handling, network security.

GDPR Data Protection

GDPR compliance for personal data processing, privacy policy, consent management, data subject rights, data protection officer, privacy by design, data protection impact assessment, breach notification, cross-border transfers, legitimate interests, cookies, privacy notices, data minimization, purpose limitation, storage limitation, accuracy, integrity, confidentiality.

Digital Services Act (DSA) Requirements

DSA compliance for digital services, online platforms, intermediary services, hosting services, online marketplaces, social networks, content moderation, illegal content removal, transparency reporting, risk assessment, systemic risks, recommender systems, dark patterns, targeted advertising, crisis response, digital services coordinator.

EU AI Act Implementation

AI Act compliance for artificial intelligence systems, high-risk AI applications, prohibited AI practices, foundation models, general purpose AI, risk management, quality management, transparency obligations, human oversight, accuracy, robustness, cybersecurity, bias monitoring, fundamental rights impact assessment.

eIDAS 2.0 Digital Identity

eIDAS 2.0 compliance for electronic identification, digital signatures, electronic seals, time stamps, electronic delivery services, website authentication, trust services, qualified trust service providers, European Digital Identity Wallet, cross-border recognition, electronic transactions, digital certificates, remote signature, mobile ID.

Medical Device Regulation (MDR)

MDR compliance for medical devices, software as medical device, clinical evaluation, post-market surveillance, unique device identification, device classification, conformity assessment, notified bodies, clinical investigation, risk management, quality management system, technical documentation, vigilance reporting.

Industry Sectors and Use Cases

Compliance guidance for startups, SMEs, enterprises, software developers, IoT manufacturers, fintech, healthtech, automotive, energy, telecommunications, public sector, SaaS providers, e-commerce, digital platforms, cloud services, cybersecurity companies, consulting firms, legal practitioners, compliance officers, risk managers, CISOs, CTOs.

Geographic Coverage

EU member states compliance: Germany, France, Netherlands, Belgium, Austria, Denmark, Sweden, Finland, Poland, Czech Republic, Hungary, Slovakia, Slovenia, Croatia, Bulgaria, Romania, Lithuania, Latvia, Estonia, Ireland, Luxembourg, Malta, Cyprus, Portugal, Spain, Italy, Greece, plus EEA countries Norway, Iceland, Liechtenstein.

Related Standards and Frameworks

ISO 27001, ISO 27002, NIST Cybersecurity Framework, Common Criteria, ETSI EN 303 645, IEC 62443, ISO 14971, ISO 13485, ENISA guidelines, CISA guidance, BSI standards, ANSSI recommendations, NCSC guidance, cyber essentials, SOC 2, PCI DSS integration.

Available Now

In Development

Get notified when new content is ready

Available Content

Available Content

Your path to EU cybersecurity compliance

Why We Built This Website

The Problem We Solve

How We Help You

Who This Website Helps

Small & Medium Businesses

Developers & Tech Teams

Compliance & Legal Teams

EU Compliance Scanner

Why Start Here?

What You Get:

What Happens Next:

Compliance tools you'll actually use

Features you'll love

AutoComplete Questions

Export to PDF & Word

Progress Tracking

Cyber Resilience Act (CRA) Compliance Hub

NIS2 Directive Compliance Hub

GDPR Data Protection Compliance Hub

Digital Services Act (DSA) Compliance Hub

Built on Proven Standards

Leverage Existing Work

Avoid Duplicate Effort

Fill the Gaps

ISO 27001

IEC 62443

NIST CSF

SOC 2

CIS Controls

COBIT 2019

ISO 31000

ISO 22301

ENISA Guidelines

Detailed Law-to-Chapter Mappings

How to Read

Current Law

🤝 Still Feeling Overwhelmed?

We use cookies