NIS2 applies across the EU — with personal liability for management and fines of up to €10 million. We guide you from the applicability assessment to full compliance.
Request ConsultationNIS2 affects an estimated 30,000 organisations in Germany alone — many are not yet aware. Affected organisations have more than 50 employees or more than €10 million in annual turnover and operate in one of 18 critical sectors: energy, transport, healthcare, digital infrastructure, financial services and many more.
We begin with a structured applicability assessment and gap analysis. We then develop a pragmatic implementation plan — no over-engineered projects, but targeted measures with maximum compliance impact. The result: you are audit-ready.
NIS2 Art. 21 explicitly requires the management of supplier risks. For the technical implementation of third-party risk management, we use 360TPRM by Darkscope — a specialised platform for continuous supplier monitoring that natively covers NIS2 Art. 21.
Technology Partner
For NIS2-compliant supplier risk management, we use 360TPRM by Darkscope — continuous monitoring, automated assessments and complete audit documentation.
Discover 360TPRM →When must NIS2 be implemented?
NIS2 has been in force across the EU since October 2024 / national transposition by December 2025. Supervisory authorities may request evidence at any time.
What penalties apply for NIS2 violations?
Up to €10 million or 2% of global annual turnover — plus personal liability of senior management.
What is the difference between NIS2 and DORA?
DORA applies specifically to the financial sector and is lex specialis relative to NIS2. Financial entities are subject to both regulations simultaneously.