If you ask us, regulations are a good thing. 

The new security-focused regulations from the European Union are meant to raise the security levels of many different organizations and verticals. Better security means less risk of intrusions, data loss, and negative publicity, and it also promotes a security mindset at all organizational levels. 

At the same time, we understand that being required by law to adhere to these things can be daunting and downright confusing. That is where we can help you and your organization. Let us examine four regulations and directives that affect organizations today, tomorrow, and in the future.

GDPR still counts

A few years ago, GDPR was treated as a sort of new millennium bug. After a set date, organizations needed to control all their user data or face substantial fines.

Thanks to tremendous efforts, most organizations today have GDPR under control, at least if they are EU-based or have important business here.  

As a European organization, Pointsharp helps numerous clients with various aspects of their GDPR initiatives. We especially focus on making the organization’s email and file transfers GDPR compliant by offering secure, encrypted, and traceable file transfers integrated directly into users' email clients, complete with email classification. 
For organizations requiring even higher security, we offer on-premises Exchange protection with advanced content filtering for mobile devices.

On the user side, we help organizations automate their identity lifecycle management. This is especially helpful when an employee leaves the organization, where our solutions ensure every access is appropriately closed down at the right time and that user data is not stored longer than needed.

Waving EU flag
Hands holding Euros

DORA is here for the financial sector

The Digital Operations Resiliency Act (DORA) applies throughout the European Union as of January 17, 2025. DORA aims to strengthen cybersecurity for most organizations in the financial sector.

More specifically, affected organizations must improve their security and risk management and ensure that third-party technology and solutions providers follow the same regulations.

As a European organization and third-party provider of cybersecurity solutions, Pointsharp has worked hard to comply with DORA. Today, we can proudly say that we are providing compliant solutions to several organizations within the financial sector and are more than prepared to help others. 

NIS2 is the next step

The Network and Information Systems Directive, NIS2, entered into force in October 2024 and will now be adapted to fit local laws within the European Union. The directive shares many similarities with DORA but has a much broader scope of organizations affected by it

At Pointsharp, we have been preparing for this directive for a long time. We ensure our solutions go above and beyond what the directive calls for and educate affected organizations through several webinars and presentations at numerous cybersecurity events all over Europe.  

Our flexible solutions provide secure access to any infrastructure with unmatched Exchange on-premises MFA protection. Our solutions also help you with advanced logs for risk assessment and reporting. 

Healthcare person using his mobile phone
Swedish forrest landscape

eIDAS for the future

Electronic identification, or eID, will significantly simplify the digital lives of all EU citizens on a European scale. However, the eIDAS regulation is still a few years away, and it will probably take another few years to become a natural part of our lives.

As an organization with roots in Sweden, we already know what this can mean for our everyday lives, as eID is already a natural part of Swedish life.

Naturally, Pointsharp has been a leading player in the organizational use of eID. Many years ago, we helped develop EFOS in Sweden, the national eID system for the healthcare sector. Last year, we were one of the first third-party organizations to receive approval from Digg, the Swedish agency for digital government, to issue organizational eIDs.

This puts us in a perfect position to help any European organization with eIDs in general and eIDAS in particular when the time is right. 

We help you on your compliance journey 

As a European cybersecurity organization with roots in Sweden, Germany, and Denmark and local partners all over Europe, we understand what it means to comply with local laws and overarching directives and regulations. All our solutions are developed and run within the European Union, which also helps us be compliant. In addition to our own solutions, our partners can also provide compliance consulting to make your journey even easier.

Our solutions are also made to be flexible, meaning that we can work with and strengthen what you already have in place. That way, you do not have to replace everything you have; we can help make it better together with you.