NIS2 Scope Checker
Check if the NIS2 directive applies to your organization
Company Information
💾 Your data is saved automaticallyEnter 8-digit registry code (e.g., 10000001)
Sample data: fictional 120-person IT services company
Full-time equivalent employees
Last financial year turnover in EUR
Last financial year balance sheet total in EUR
Size Thresholds
Essential Entity
- >250 employees
- >50M EUR turnover
- >43M EUR balance
Important Entity
- >50 employees
- >10M EUR turnover
- >10M EUR balance
Fill in the form to see the result
What needs to be done?
Risk Assessment
Identify and document all cybersecurity risks. Cybersecurity Act requires a risk-based approach.
Security Policies
Establish security policies: incident management, backups, encryption, access control.
Incident Reporting
Report to RIA within 24 hours. Required process and contacts.
Board Responsibility
Board members bear personal liability. Required training and awareness.
Your next steps
37 questions with action plan. Result: detailed PDF report for the board.
Compact overview of board member obligations and personal liability under NIS2.
If your company also serves the financial sector. Save 20%.
One-time payment • No subscription required
About NIS2 Directive
NIS2 (Network and Information Security Directive 2) is an EU directive establishing minimum cybersecurity requirements for essential and important sector entities. In Estonia, it is implemented through the Cybersecurity Act.