COMPLIANCE BY DESIGN

Compliance by Design. Not as an Afterthought.

Every Bytsecure service is designed to meet European regulatory requirements. GDPR, NIS2, EU AI Act โ€” our principles, not obstacles.

Who Needs What โ€” Decision Flowchart

Laws, regulations, or the nature of your data determine the path.

1

Are you an NIS2 Essential/Important entity?

๐Ÿ›๏ธ ON-PREMISE (MANDATORY)
Fines up to โ‚ฌ10M or 2% of revenue
2

Do you process sensitive data (health, legal)?

๐Ÿ›๏ธ ON-PREMISE (recommended)
High-risk data
3

>50 employees or >โ‚ฌ10M revenue?

๐Ÿ›๏ธ ON-PREMISE (recommended)
Medium-large organization

โ˜๏ธ EU SOVEREIGN CLOUD โ€” Sovereignty without hardware

How We Cover Each Regulation

GDPR

Regulation 2016/679

  • Data within EU

    On-premise or Scaleway (France) โ€” never outside the EU

  • Right to erasure

    Full deletion โ€” files, queries, logs

  • Data minimization

    Only essential data is collected

  • Breach notification

    SIEM real-time alerts โ€” notification within 72h

  • DPO support

    Documentation, audits, compliance reports

  • Zero training

    Your data is never used for AI training

NIS2

Directive 2022/2555

  • Risk analysis (21.2.a)

    SIEM detection + Pentest vulnerability assessment

  • Incident handling (21.2.b)

    SIEM real-time alerts + incident response

  • Business continuity (21.2.c)

    Backup integration + disaster recovery

  • Supply chain security (21.2.d)

    100% EU stack โ€” no US dependency

  • Encryption (21.2.e)

    TLS 1.3 + AES-256 + encrypted agent comms

  • Incident reporting (23)

    24h reporting + audit logs

EU AI Act

Regulation 2024/1689

  • Risk classification

    Sovereign AI = limited risk (not high-risk)

  • Transparency

    User is informed of AI interaction

  • Human oversight

    Human-in-the-loop โ€” AI proposes, humans decide

  • Documentation

    Full documentation โ€” audit-ready

Risk Assessment Matrix โ€” 35 Business Types

Full NIS2, GDPR, EU AI Act analysis for every business type.

OrganizationNIS2GDPREU AI ActPathBundle
Municipality (50-500 emp.)EssentialHighHigh๐Ÿ›๏ธ On-PremiseFull Stack
Region (200+ emp.)EssentialHighHigh๐Ÿ›๏ธ On-PremiseFull Stack
Ministry / Public ServiceEssentialHighMedium๐Ÿ›๏ธ On-PremiseFull Stack
Utility โ€” EnergyEssentialMediumMedium๐Ÿ›๏ธ On-PremiseAI+SIEM+Pentest
Utility โ€” WaterEssentialMediumLimited๐Ÿ›๏ธ On-PremiseSIEM+Pentest
Utility โ€” TelecomEssentialMediumMedium๐Ÿ›๏ธ On-PremiseAI+SIEM+Pentest
Hospital (200+ emp.)EssentialVery HighHigh๐Ÿ›๏ธ On-PremiseFull Stack
Health CenterEssentialVery HighHigh๐Ÿ›๏ธ On-PremiseFull Stack
Private ClinicEssentialVery HighMedium๐Ÿ›๏ธ On-PremiseFull Stack
Diagnostic CenterEssentialVery HighLimited๐Ÿ›๏ธ On-PremiseOffice+SIEM+Pentest
Private Medical PracticeEssentialVery HighLimited๐Ÿ›๏ธ On-PremiseOffice+SIEM
PharmacyExemptMediumLimitedโ˜๏ธ EU CloudOffice+SIEM
Dental PracticeExemptMediumLimitedโ˜๏ธ EU CloudOffice+PDF
Large Industry (200+)ImportantMediumLimited๐Ÿ›๏ธ On-PremiseOffice+SIEM+Pentest
Medium Industry (50-200)ImportantLowLimited๐Ÿ›๏ธ On-PremiseOffice+SIEM
Small Industry (10-50)ExemptLowLimitedโ˜๏ธ EU CloudOffice+SIEM
Workshop (1-10 emp.)ExemptLowLimitedโ˜๏ธ EU CloudOffice+PDF
Food Processing (50+)ImportantMediumLimited๐Ÿ›๏ธ On-PremiseOffice+SIEM
Accounting FirmExemptMediumLimitedโ˜๏ธ EU CloudOffice+SIEM
Law FirmExemptHighLimited๐Ÿ›๏ธ On-PremiseOffice+SIEM
Consulting FirmExemptMediumLimitedโ˜๏ธ EU CloudOffice+SIEM
Insurance Company (50+)ImportantHighMedium๐Ÿ›๏ธ On-PremiseAI+Office+SIEM
Bank / Financial InstitutionEssentialVery HighMedium๐Ÿ›๏ธ On-PremiseFull Stack
Educational OrganizationExemptMediumLimitedโ˜๏ธ EU CloudOffice
Ecommerce (5-50 emp.)ExemptMediumLimitedโ˜๏ธ EU CloudOffice+SIEM
Retail Chain (50+)ExemptMediumLimitedโ˜๏ธ EU CloudOffice+SIEM
Small ShopExemptLowLimitedโ˜๏ธ EU CloudOffice+PDF
Tech Startup (5-20 emp.)ExemptMediumLimitedโ˜๏ธ EU CloudOffice+SIEM
Software House (20-100)ExemptMediumMediumโ˜๏ธ EU CloudOffice+SIEM+Pentest
Cloud Provider (EU)EssentialHighMedium๐Ÿ›๏ธ On-PremiseFull Stack
NGO / Non-ProfitExemptMediumLimitedโ˜๏ธ EU CloudOffice+PDF
Media / PublishingExemptMediumLimitedโ˜๏ธ EU CloudOffice+PDF
Engineers / ArchitectsExemptMediumLimitedโ˜๏ธ EU CloudOffice+PDF
FreelancerExemptMediumLimitedโ˜๏ธ EU CloudOffice+PDF
Physician (Private)EssentialVery HighLimited๐Ÿ›๏ธ On-PremiseOffice+SIEM

Bytsecure Bundles

6 packages โ€” from Full Stack to Office only. On-premise or cloud.

BundleIncludes๐Ÿ›๏ธ On-Premiseโ˜๏ธ EU Cloud
Full StackAI + Office + PDF + SIEM + PentestDGX Spark (โ‚ฌ3,800)โ€” (AI on-premise only)
AI + Office + SIEM + PentestAll except PDFDGX Sparkโ€” (AI on-premise only)
Office + SIEM + PentestOffice, security, testingClient serverโ‚ฌ149/month
Office + SIEMOffice + cybersecurityClient serverโ‚ฌ149/month
Office + PDFOffice + PDF toolsClient serverโ‚ฌ79/month
OfficeSovereign Office onlyClient serverโ‚ฌ79/month

Need Help with Compliance?

Book a free NIS2 compliance assessment. We'll analyze your organization and recommend the right solution.

Bytsecure | Digital Sovereignty for Every Business