Getting started

This page walks you from sign-up to your first compliance snapshot in about fifteen minutes.

1. Create your organisation

When you sign up, you create an organisation — the tenant that holds your compliance data. You’ll provide a few facts that drive everything downstream:

• Country — determines which national authority and CSIRT formats apply.
• Sector — one of the NIS2 Annex I / II sectors (energy, transport, banking, health, digital infrastructure, …).
• Headcount and turnover — used for the size-cap test.

You can record your legal-entity identifiers (e.g. SIREN/TVA, Partita IVA, NIPC) now or later — they’re used on authority exports.

2. Confirm your scope

The scoping step decides whether you’re an essential or important entity, or out of scope. This is the foundation for everything else, so do it first.

3. Run a gap assessment

The gap assessment scores you against the NIS2 Article 21 risk-management measures. You’ll get an implementation score, a documentation score, and a ranked list of gaps to close.

4. Generate your documents

From the gaps, generate the policies and records NIS2 expects — pre-filled for your sector and country, ready to review and adopt.

5. Stand up the ongoing processes

NIS2 is continuous, not a one-off. Set up:

• Incident reporting so you can meet the Article 23 clock.
• A supplier register with review cadence.
• Awareness training for staff and management.

Roles & access

Each member has a role on the organisation. Admins manage settings, billing, and members. If you’re an MSP managing client organisations, see MSP portfolio — your admin access to the parent extends to every client you manage.