#compliance
11 artikelen met dit onderwerp
NIS2 and SMEs: does your business fall under the directive?
NIS2 is the successor to NIS1 and significantly widens the scope. Many SMEs in "ordinary" sectors now suddenly qualify as essential or important entities.
Microsoft 365 & Entra IDRetention policies in M365: keep or delete — who decides?
Some data must be kept (fiscal obligations), other data must be deleted (GDPR). Retention policies handle this automatically — if you set them up correctly.
ComplianceDORA for SMB Suppliers to Financial Institutions
From January 2025, every bank, insurer, or investment fund expects its suppliers to be DORA-compliant. As an SMB supplier, those requirements will land in your contracts.
PDF redactieAudit trail for redaction: what to log, why, and how long?
An auditor walks in and asks: "show us how you anonymised client data for report X." Without an audit trail, you have nothing to show. Here's what to log.
Security zonder IT-afdelingVendor risk management for SMBs: a practical framework
Every SaaS subscription is a slice of risk you're outsourcing. How do you decide which of your 30 vendors actually deserve closer attention?
ComplianceISO 27001 or SOC 2? Which one fits your Dutch SMB?
ISO 27001 is Europe-oriented, SOC 2 is American. Which one do your clients actually need — and can you combine them? Here's the practical difference for an SMB.
ComplianceNEN 7510 for healthcare businesses: a step beyond ISO 27001
Do you work in or with healthcare? Then NEN 7510 — alongside or instead of ISO 27001 — is a real requirement. The overlap is significant; the differences lie in patient data and specific Annex controls.
Boekhouding & facturatieInvoice requirements in the Netherlands: what must you include?
The Dutch Tax Authority has a fixed list of requirements. Miss any of them and your customer can't reclaim VAT — and you risk issues during an audit. Here's the checklist.
AVG & privacyGDPR Compliance for SMBs: The Practical Minimum
GDPR doesn't require a €10,000 project or a DPO for most small businesses. Here's what every SMB actually needs — based on what the Dutch DPA really checks for.
ComplianceISO 27001 for SMBs without €50k in consultancy fees
ISO 27001 is manageable once you understand the structure. Here's the minimum work a 30-person SMB needs to pass a Stage 2 audit, what it costs, and where consultants actually add value.
Tools & checks uitgelegdVIES VAT number check: what it is, why it matters, and how to do it quickly
When you invoice a business in another EU country, you are often legally required to verify their VAT number via VIES. What is VIES, what does it check (and what doesn't it), and how do you maintain a proper audit trail?