News:

Compliance is different from being in control
News 08 April 2026

Compliance is different from being in control

Compliance is moving faster than ever — but having a certificate doesn’t necessarily mean you’re truly ‘in control’. The difference lies in how you manage risks and control processes in practice.

Read more…

 If your ISMS relies on a single person, you are not in control
News 03 April 2026

If your ISMS relies on a single person, you are not in control

Does your ISMS rely on a single person? If so, you’re at greater risk than you realise. What would happen if that key person were to leave tomorrow — would you still be in control?
Read more…

 IRM360 at Cybersec Europe 2026 in Brussels: integrated risk management for the digital future
News 01 April 2026

IRM360 at Cybersec Europe 2026 in Brussels: integrated risk management for the digital future

IRM360 will be exhibiting at Cybersec Europe 2026 in Brussels, demonstrating how organisations can combine NIS2, DORA and AI governance within a single integrated risk management platform. Read more…

 The blind spot in European cyber reporting: we’re focusing on the wrong KPI’s
News 25 March 2026

The blind spot in European cyber reporting: we’re focusing on the wrong KPI’s

We track data breaches and ransomware, but not how many businesses are driven to bankruptcy as a result. Yet cyber incidents are increasingly posing direct risks to business continuity.
Doesn’t this mean we’re missing the most important KPI?
Read more...

 The next cyber incident may not start inside your organisation.
News 18 March 2026

The next cyber incident may not start inside your organisation.

Cyber incidents are increasingly originating outside your own organisation, for example at suppliers or within the digital supply chain. Yet ultimately, the impact falls on you. How well do you understand these risks?
Read more…

 Two weeks ago, we wrote about solicitors who had to attend training courses after AI errors.
News 11 March 2026

Two weeks ago, we wrote about solicitors who had to attend training courses after AI errors.

AI training is important, but the EU AI Act also requires risk management, documentation and continuous monitoring. With our AI Management System (AIMS), we ensure that AI use is controlled and compliant.
Read more...

 From Processing Register to Integrated Risk Assessment: Combining Privacy Risks with Security, Continuity and AI
News 04 March 2026

From Processing Register to Integrated Risk Assessment: Combining Privacy Risks with Security, Continuity and AI

Privacy is more than just a register; it is a risk domain. Privacy, security and AI risks often exist separately, while managers need a comprehensive overview.

The solution: a single, up-to-date risk picture that brings all risks together.

Read more...

 European regulations make digital strategy a management responsibility
News 27 February 2026

European regulations make digital strategy a management responsibility

European regulations make digital resilience an administrative responsibility. Hosting, data, and supplier selection are no longer IT details, but strategic governance choices.
Read more...

 Lawyers attend training course after AI errors. But is lack of training the real problem?
News 26 February 2026

Lawyers attend training course after AI errors. But is lack of training the real problem?

The NOS reported that three solicitors received a warning after misusing AI (such as ChatGPT) with non-existent case law.
Training alone is not enough. Without clear AI governance, compliance and business risks arise — especially with the advent of the EU AI Act.
Read more...

 ISO 27001 is not ‘too heavy’ for start-ups and NIS2 suppliers.
News 20 February 2026

ISO 27001 is not ‘too heavy’ for start-ups and NIS2 suppliers.

It is actually wise to start early.
All too often we hear:
‘ISO 27001? Isn't that something for large organisations?’
‘It's complex and expensive.’
‘ISO? That's just a paper tiger.’
Perhaps that was true in the past.
But today, that is certainly no longer the case.
Read more...