What is the NIS2 Directive?
The NIS2 Directive (Directive (EU) 2022/2555) is the EU’s updated framework for network and information security, strengthening cybersecurity requirements for essential and important entities across the European Union.NIS2 went into effect in January 2023, with EU member states required to transpose it into national law by October 2024. The directive significantly expands the scope of entities covered and increases penalties for non-compliance.
How ABV Aligns with NIS2 Requirements
ISO 27001 Certification
ISO 27001 Certification
Provides systematic information security management that satisfies many NIS2 requirements. Learn more
Risk Management
Risk Management
Documented cybersecurity risk assessment and treatment processes, reviewed annually as part of ISO 27001 certification.
Business Continuity
Business Continuity
Multi-AZ deployment, encrypted backups, and disaster recovery procedures ensure resilient operations. Learn more
Incident Handling
Incident Handling
Customer notification within 24-48 hours for critical incidents with documented response procedures. Learn more
Supply Chain Security
Supply Chain Security
AWS as infrastructure provider with documented security controls and subprocessor transparency.
Technical Security Measures
Technical Security Measures
RBAC, MFA, TLS 1.2+ encryption in transit, AES-256 at rest. Learn more about access controls and encryption
Security Testing
Security Testing
Annual penetration tests and continuous vulnerability scanning validate security posture. Learn more
How ABV Helps Your NIS2 Compliance
If your organization IS subject to NIS2, ABV provides tools to support your compliance:Supporting Your Requirements
- Incident Detection: Use ABV to monitor your GenAI systems for anomalies that may indicate security incidents requiring NIS2 reporting.
- Audit Trail Generation: Maintain comprehensive logs of your GenAI operations to support incident investigations and regulatory reporting.
-
Flexible Data Processing: Choose from multiple deployment options:
- Standard EU Region (Ireland) - Immediate availability
- Custom Regional Deployments - Available in most AWS regions including Stockholm, Frankfurt, Paris
- Keep data within specific member states as required by national authorities
- Learn more
- Vendor Risk Management: Include ABV in your supply chain security assessments using our security documentation.
For Your Vendor Assessments
When assessing ABV as part of your NIS2 supply chain requirements:- Security Certifications: ISO 27001 and SOC 2 Type II demonstrate our security maturity
- Incident History: Available upon request for your risk assessment
- Data Processing Agreement: DPA with security commitments and breach notification clauses
- Subprocessor List: Transparency about our infrastructure providers (primarily AWS)
Regional Deployments for NIS2 Entities
Custom Deployments Available: For NIS2 essential and important entities requiring specific data residency:
- Sweden: Stockholm (eu-north-1) for Swedish entities
- Germany: Frankfurt (eu-central-1) for German critical infrastructure
- France: Paris (eu-west-3) for French essential services
- Other EU Regions: Most AWS EU regions available upon request
Requesting NIS2 Documentation
Available Documentation
- Security Controls Mapping: Shows how our ISO 27001 controls align with NIS2 requirements (regardless of our NIS2 status).
- Incident Response Procedures: Our customer notification procedures (note: CSIRT reporting procedures not publicly documented).
- Risk Management Documentation: Evidence of systematic risk management (under NDA for Enterprise customers).
How to Request
Provide Organization Details
Include company name, ABV account details, whether you’re an essential or important entity, and your NIS2 reporting obligations.
Specify Documentation Needs
Request security documentation for vendor assessment, clarification on ABV’s NIS2 status, or specific controls mapping.
Explain Context
Describe whether this is for vendor risk assessment, incident response planning, or regulatory compliance review.
Submit Request
Email [email protected] from your company email. We typically respond within 1-2 business days.