I
Login Get Started

What IoTTrust Does

A comprehensive platform to assess, track, and prove compliance with EU cybersecurity regulations.

πŸ”

1. Self-Assessment

Answer a single, structured questionnaire covering:

  • Governance & accountability
  • Risk management
  • Incident response & reporting
  • Business continuity
  • Supplier & third-party risk

Mapped automatically to:

GDPR Β· NIS2 Β· DORA Β· CRA Β· ENS

No duplicate work. No regulation-by-regulation guesswork.

πŸ“Š

2. Compliance Scoring

Scores Per Regulation

Get a clear compliance score for each regulation (GDPR, NIS2, DORA, CRA, ENS) so you know exactly where you stand.

Scores Per Domain

Break down compliance by domain: governance, incident handling, supply chain, and more.

Clear risk levels:

Low Medium High

No opaque algorithms β€” scoring logic is documented and auditable

πŸ› οΈ

3. Actionable Tasks (Not Just Scores)

Every gap creates:

  • A concrete task
  • A priority level
  • A regulatory reference
  • A deadline aligned to legal expectations

Example:

"Create Incident Response Plan β€” NIS2 Art. 23 β€” Due in 30 days"

πŸ“

4. Evidence Vault (Audit-Ready)

Upload and organize:

  • Policies, procedures, registers
  • Auto-generated evidence records from assessments
  • Regulation-tagged and searchable

"Auditors don't ask if you comply β€” they ask where is the proof. IoTTrust keeps it ready."

🀝

5. Supplier Security Assessment (Built-In)

Send an 8-question supplier cybersecurity assessment:

  • No supplier account required β€” they complete it via secure link
  • Supplier responses feed into your compliance risk score

This satisfies:

  • β€’ NIS2 supply-chain obligations
  • β€’ DORA ICT third-party risk
  • β€’ ENS third-party requirements

Who This Is For

SMEs & Growing Companies

  • β€’ No internal GRC team
  • β€’ Need fast, affordable compliance structure

Essential & Important Entities (NIS2)

  • β€’ Need proof, traceability, and deadlines
  • β€’ Cannot rely on ad-hoc documents

Founders, CISOs, Compliance Managers

  • β€’ Want clarity, not consultant jargon
  • β€’ Want to stay in control

What This Is

Currently Includes

  • βœ“ Self-assessment engine
  • βœ“ Regulation mapping
  • βœ“ Scoring & gap detection
  • βœ“ Task tracking
  • βœ“ Evidence vault
  • βœ“ Supplier questionnaires
  • βœ“ PDF-ready reporting

Coming Next

  • β†’ Advanced decision layer
  • β†’ Continuous monitoring integrations
  • β†’ Automated regulator submissions
  • β†’ Full RBAC & workflows

How It Works

1

Create workspace

Set up your organization account and invite team members.

2

Answer 22 questions

Complete the structured self-assessment covering all compliance domains.

3

See compliance status

Get instant scores per regulation and per domain with clear risk levels.

4

Fix gaps with tasks

Every gap automatically creates a prioritized task with regulatory references and deadlines.

5

Store evidence

Upload policies, procedures, and documents. Link them to controls for audit readiness.

6

Invite suppliers

Send security assessments to third parties. No supplier accounts needed.

7

Export audit-ready reports

Generate PDF reports with scores, evidence, and compliance status for auditors.

Ready to Get Started?

Start your free self-assessment today and be audit-ready in days, not months.

Start Free Self-Assessment View Pricing