NIS2 · Cybersecurity legislation effective 1 July 2026

Is your organization cybersecure enough? Check it in 5 minutes

Test your cybersecurity against NIS2 legislation. Relevant for every organization — not just critical sectors. Answer 15 questions and receive a free report.

How it works↓

Free & no obligationNo commitmentsInstant PDF report

56%

Access85

Incident45

Supply30

Data65

Sample assessment preview

NIS2 basedGDPR compliant5 minutesPDF report by emailESBL Digital — Amsterdam

How it works

How does it work?

The check is completely free — you pay nothing. Only when you want help with next steps, you discuss with ESBL what's needed and what it costs.

Enter your company details

Company name, email and phone number. This lets us personalize and send your report. Your data is never sold or shared.

Free

Answer 15 questions about your cybersecurity

We test five critical NIS2 pillars: access management, incident response, supply chain risk, data security and technical security. Honest answers provide the most insight.

5 minutes

Receive your personal PDF report

Right after the check you'll get an email with your score, an overview of identified risks, and concrete, prioritized recommendations.

PDF by email

Optional: ESBL helps with implementation

Don't want to tackle the recommendations yourself? Contact ESBL. We'll create a tailored proposal — you decide what to take on.

No obligation & tailored

20+

Years IT experience

25+

Organizations helped

AMS

Local consultants from Amsterdam

€0

Cost for the check

About us

ESBL Digital — IT specialist in Amsterdam

ESBL Digital is an independent IT firm in Amsterdam. We help organizations of all sizes with security, compliance and cloud transformation — pragmatic and no-nonsense.

Specialists in NIS2, GDPR and AI Act compliance
Years of experience with Microsoft 365, Azure and cloud security
Flexible: from one-time advice to ongoing partnership
Clients in professional services, healthcare, tech and government

FAQ

Questions & answers

Who does NIS2 apply to?

NIS2 is formally mandatory for medium and large organizations (50+ employees or €10M+ revenue) in designated sectors. But in practice it affects nearly every business: if you supply to a NIS2-obligated organization, you are indirectly bound by the same requirements through supply chain risk management. Additionally, many NIS2 measures overlap with existing GDPR obligations — think incident reporting, access control, and data security. The guidelines are therefore relevant for any organization serious about cybersecurity and compliance, regardless of sector or size.

What does this check cost?

Nothing. The check and PDF report are 100% free. No hidden costs, no obligations. Only if you want help with next steps, ESBL creates a tailored, no-obligation proposal.

What happens with my data?

We only use your data for the report and possible follow-up. We never sell or share it with third parties. We're GDPR compliant and you can request deletion anytime via privacy@esbl.digital.

How fast do I get the report?

Instantly. The report is generated right after you complete the check. You'll have the PDF in your inbox within minutes.

What if I need help with the follow-up?

ESBL can guide you through everything: from policy and training to technical configuration. You choose what you do with us and what you handle internally. We always work with a transparent proposal you approve upfront.

What does NIS2 have to do with GDPR?

NIS2 and GDPR reinforce each other. GDPR already requires you to take appropriate technical and organizational measures for personal data — NIS2 specifies what that means: incident response plans, access management, encryption, supply chain risk management and security awareness. If you are NIS2 compliant, you automatically meet a large part of your GDPR security obligations. Conversely: if you think you are GDPR compliant but lack these measures, you are at risk there too.