The Europrivacy extension to assess and certify compliance with the EU NIS2 Directive – Directive 2022/2555 on measures for a high common level of cybersecurity across the Union. For cybersecurity frameworks for network and information systems.

1. REDUCE RISKS
Identify and correct non-conformities, reduce legal and financial risks for Applicant, and reduce risks for your partners and for the data subject.

2. VALUE COMPLIANCE
Turn compliance into a source of value creation by acquiring competitive advantages, turning your compliance into an asset, and contribute to a better market valuation.

3. BUILD TRUST AND REPUTATION
Demonstrate compliance and reduced risks with a certification scheme supported by largest law and consulting firms.

4. SIMPLIFY
Homogenize compliance management by using the same criteria worldwide, with the possibility to extend it to other regulations.

5. MAKE COMPLIANCE ENJOYABLE
Reduce uncertainty and stress. Value your compliance and make it recognized. Take advantage of our online services, with alerts in case of regulatory changes. Join a community of experts and an ecosystem of trustable partners.

NIS2 Cert has been developed by the European Centre for Certification and Privacy (ECCP) in charge of Europrivacy, the European Data Protection Seal recognized by all EU and EEA National Authorities.

It is applicable to entities qualified as essential or important.

This applies to public or private entities in sectors of high criticality or other critical sectors which qualify as medium-sized enterprises, or exceed the ceilings for medium-sized enterprises, and which provide their services or carry out their activities within the EU.

Regardless of size, entities in sectors of high criticality or other critical sectors are also included where they fall within one of the following categories:

– A provider of public electronic communications networks or services;
– A trust service provider;
– A top-level domain name registry or domain name system service provider;
– The sole provider in a Member State of a service essential for maintaining critical societal or economic activities;
– Provision of a service whose disruption could significantly impact public safety, security, or health;
– Provision of a service whose disruption could induce systemic risk, particularly with cross-border impacts;
– Deemed critical due to national or regional importance for a sector or type of service, or for other interdependent sectors;
– A public administration entity;
– Identified as a critical entity by a Member State;
– Provision of domain name registration services.

Important entities are those which do not fall within essential entity categories, but which are within sectors of high criticality or other critical sectors.

NIS2 Cert can be used:
• As a standalone certification, or
• Combined with your existing or upcoming Europrivacy certification

The process is simple and efficient:

1. Purchase a Europrivacy Welcome Pack to access all required resources during three years, including the introductory course on our academy website, and the criteria and reference documentation on our Europrivacy community website.
2. Request offers from our official partners.
3. Select a qualified Certification Body to certify your data processing.
4. Value, enjoy, and communicate your compliance.

More information

• Europrivacy online academy
• Europrivacy resources and community website