Home Insights
Research & Analysis

Insights

In-depth guides on cybersecurity, compliance, and AI risk for organisations in regulated industries.

Professional reviewing compliance documents
Guide Compliance ISO 27001 11 May 2026 10 min read
ISO 27001 for small and medium-sized businesses: a practical implementation guide
ISO 27001 certification is not just for large enterprises. Organisations without a dedicated security team can achieve it. This guide covers the six-step implementation path, realistic timelines, what it costs, and how to choose a certification body without overspending.
Cyvra Team Read more
Hotel corridor
Analysis Cybersecurity Hospitality 10 May 2026 7 min read
The cybersecurity risks hotels need to address, and usually don't
A mid-size hotel holds more sensitive data per customer than most banks: payment cards, passport numbers, loyalty data, and travel patterns in one place. This analysis covers the four attack surfaces that matter most, and what a credible security baseline actually looks like.
Cyvra Research Read more
Healthcare professionals reviewing data on a tablet
Guide AI Healthcare 8 May 2026 8 min read
Using AI in your healthcare organisation without creating GDPR exposure
Healthcare AI is moving fast, but most tools that process health data create GDPR and EU AI Act obligations that generic guidance misses entirely. Five questions to ask before any clinical or administrative AI deployment.
Cyvra Research Read more
Financial district skyline
Guide Compliance Financial Services 6 May 2026 8 min read
DORA is live: the third-party risk gap most financial firms still have
DORA has applied across the EU since January 2025. Most financial services firms have addressed the five operational resilience pillars. Third-party ICT risk, where the real exposure sits, remains the gap.
Cyvra Research Read more
Cybersecurity digital shield protection
Guide Cybersecurity Risk Management 3 May 2026 7 min read
What your cyber insurer expects before paying a claim
Cyber insurers now require specific technical controls before binding cover and before paying claims. This guide covers what underwriters check, how claims get evaluated, and which exclusions are catching organisations out.
Cyvra Research Read more
Cybersecurity compliance and digital security
Guide Compliance Cybersecurity 1 May 2026 7 min read
NIS2 is in force: what your organisation needs to have in place now
NIS2 became enforceable across EU member states on 17 October 2024. Most large and medium enterprises in the Netherlands are now subject to it whether they know it or not. This guide covers scope, the 10 mandatory measures, and notification timelines.
Cyvra Research Read more
Data privacy and GDPR compliance
Guide Data Privacy Compliance 29 April 2026 8 min read
GDPR compliance for businesses in the EU: what you actually need to have in place
Eight years on, many organisations still have gaps in the basics: no lawful basis documented, breach response plans that miss the 72-hour window, and processing records that have never been updated. This guide covers the obligations that matter most.
Cyvra Team Read more