NIS2 support

FlexPortals is designed according to information security and operational principles supporting the technical, incident management and auditability expectations associated with the NIS2 directive. Our goal is to provide transparent, documented and security-conscious ICT supplier operations.

GDPR support

How does FlexPortals support NIS2 readiness?

The platform and related operational processes support:

  • access and permission management
  • multi-factor authentication
  • restricted administrative access
  • detailed system and user logging
  • audit trail and event traceability
  • incident detection, documentation and investigation
  • incident severity classification
  • event data availability for incident reporting
  • documented incident management procedures
  • documented release, security release and hotfix processes
  • secure development and change management
  • separated development, test and production environments
  • backup and restore procedures
  • RPO/RTO-based recovery targets
  • SLA-based response and recovery processes
  • integration and API access control
  • third-party access logging
  • documented and auditable operation

In the event of an incident, FlexPortals supports rapid investigation and recovery through automated monitoring, detailed logging and audit trail information.

FlexPortals can operate in provider-hosted or customer-hosted environments. In customer-hosted environments, a shared responsibility model applies.