Honest Security Posture

Designed for EU Compliance

We are clear about where we stand: GDPR-aware and NIS2-aware by design, with formal certifications on our roadmap. No claims we cannot back up.

GDPR-aware
Data Protection
NIS2-aware
Cybersecurity
EU-region
Hosting

Compliance Posture & Roadmap

What we are designed for today, and which certifications are in progress

πŸ‡ͺπŸ‡Ί

GDPR-Aware

General Data Protection Regulation
Designed ForEU Data Protection
Built into the platform
πŸ”’

NIS2-Aware

Network and Information Systems Security
Designed ForEU Cybersecurity
Aligned to the directive
β™Ώ

EN 301 549 / WCAG 2.2 AA

Accessibility Standards
Designed ForEU Accessibility
Front-end built to AA
πŸ—ΊοΈ

ISO 27001

Information Security Management
In ProgressRoadmap
Not yet certified
πŸ—ΊοΈ

SOC 2

Security, Availability, Confidentiality
In ProgressRoadmap
Not yet audited
πŸ›οΈ

EU Data Residency

EU-Region Hosting
In PlaceArchitecture
Default deployment model
πŸ—ΊοΈ

ISO 27001

Information Security Management

In Progress
ISMS scoping under way
Risk assessment and treatment
Documented security controls
Targeting formal certification

EU Regulatory Compliance

Tracking emerging European cybersecurity regulations as they take shape

EU AI Act

Tracking

Aligning deception systems to EU AI Act expectations

DORA

Tracking

Digital Operational Resilience Act for financial services

Cyber Resilience Act

Tracking

EU cybersecurity requirements for digital products

Data Act

Tracking

EU data sharing and access regulations

Documentation & Reviews

Plain documentation today, with independent review on the roadmap

Architecture & Security Overview

How the platform handles deception and evidence

PHANTAQSM Engineering

Available on request

Data Protection & Residency Note

GDPR-aware design and EU data residency

PHANTAQSM (Brussels)

Available on request

Independent Audit (Planned)

Third-party review on the certification roadmap

External auditor β€” to be engaged

Planned

Want the Honest Compliance Picture?

PHANTAQSM is GDPR-aware and NIS2-aware by design, EU-hosted, and working towards formal certification. Talk to us about where we are.