Start with Normiq
/ Modules

One platform for the full regulatory stack

Each module covers one EU regulation end-to-end — risk assessment, compliance checklists, evidence management, and audit-ready documentation. Start with the EU AI Act today, add more as they launch.

Active Included

EU Artificial Intelligence Act

Regulation (EU) 2024/1689

Risk classification, Annex III assessment, GPAI obligations, transparency requirements, prohibited practices screening, and audit-ready documentation.

Coming soon

General Data Protection Regulation

Regulation (EU) 2016/679

Data protection compliance for AI systems processing personal data. DPIA automation, lawful basis assessment, cross-border transfer checks, and Art. 22 obligations.

Coming soon

Network and Information Security Directive

Directive (EU) 2022/2555

Cybersecurity risk management and incident reporting for essential and important entities. Supply chain security, vulnerability disclosure, and governance.

Coming soon

Digital Operational Resilience Act

Regulation (EU) 2022/2554

ICT risk management for financial entities and their critical third-party providers. Operational resilience testing, incident reporting, and information sharing.

Coming soon

Cyber Resilience Act

Regulation (EU) 2024/2847

Product security requirements for digital products with network connectivity. Vulnerability handling, security updates, and conformity assessment.

On the radar

EU Data Act

Regulation (EU) 2023/2854

B2B data sharing obligations, IoT data access rights, cloud switching requirements, and interoperability mandates.

On the radar

Corporate Sustainability Reporting Directive

Directive (EU) 2022/2464

ESG and sustainability reporting obligations for companies meeting size thresholds. Double materiality assessment and ESRS-aligned disclosures.

All modules follow the same methodology: source-referenced assessments, compliance checklists tied to specific articles, evidence management, and PDF/A-1b dossier export.

Start with Normiq See pricing