Articles and insights about frameworks.
Everything you need to know about the CRA: who it applies to, security requirements for digital products, SBOM obligations, and consequences of non-compliance.
Everything you need to know about DORA: who it applies to, digital resilience requirements, ICT third-party risk management, and consequences of non-compliance.
Everything you need to know about Spain's ENS: who needs it, security requirements, certification levels, and why it's essential for Spanish public sector contracts.
Everything you need to know about the EU AI Act: risk classification, compliance requirements, who it applies to, and what happens if you don't comply.
Everything you need to know about GDPR: who it applies to, key requirements, real consequences of non-compliance, and how to get started with compliance.
Everything you need to know about ISO 27001: what it requires, who needs it, why it matters for winning contracts, and how to get started.
Everything you need to know about ISO 42001: what an AI Management System requires, who needs it, how it relates to the EU AI Act, and how to get started.
Everything you need to know about the NIS2 Directive: who it applies to, cybersecurity requirements, incident reporting obligations, and penalties for non-compliance.
The EU AI Act is now official. Here's what you need to know about the implementation timeline and how to prepare your organization for compliance.
How the EU AI Act is shaping AI governance worldwide and why organizations globally must pay attention to European AI regulation.
A comprehensive guide to EU AI Act fines, enforcement mechanisms, and what organizations should prepare for as penalties become applicable.
Understanding the whistleblower protections in the EU AI Act and how they encourage reporting of AI compliance violations.
Everything you need to know about the EU AI Act, including risk classification, compliance requirements, and implementation timelines.
Understanding the UK's principles-based approach to AI regulation, the role of existing regulators, and how it differs from the EU AI Act.
An overview of the NIST AI RMF, its core functions, and how organizations can implement it for effective AI risk management.
A comprehensive guide to Executive Order 14110 on Safe, Secure, and Trustworthy AI, its requirements, and implications for organizations.
A comprehensive guide to Canada's proposed AI legislation, including requirements for high-impact systems, penalties, and compliance strategies.