UK & EU compliance

Compliance, mapped to Fortoxa

Pick the framework that applies to your business. Each page shows how Fortoxa's monitoring, evidence capture and alerts map to the controls your auditor asks for.

UK
Cyber Essentials Plus
The UK's gold-standard audited certification covering firewalls, secure configuration, access control, malware protection, and patch management.
Read the mapping
UK
NCSC Cyber Assessment Framework
NCSC's outcome-based framework for operators of essential services — governance, risk, protection, detection and response objectives.
Read the mapping
EU
GDPR Article 32
Technical and organisational measures to secure personal data — encryption, resilience, integrity, regular testing and ongoing confidentiality.
Read the mapping
EU
NIS2 Directive
EU directive raising cyber-security requirements across critical sectors — incident reporting, supply-chain risk, and baseline technical measures.
Read the mapping

Cyber Essentials Plus

NCSC Cyber Assessment Framework

GDPR Article 32

NIS2 Directive