NIS2 Compliance — Reports Library

Real questions, analyzed by three independent AI systems. 5 reports published.

May 23, 2026 Entity Classification

Is a Hospital SaaS Provider an Essential Entity Under NIS2?

A SaaS platform serving 40 hospitals in France, Belgium and the Netherlands. 180 employees. €22M turnover. Three AI systems diverge on essential vs. important entity — and on who notifies which authority.

May 23, 2026 Incident Reporting

Ransomware Attack — NIS2 Reporting Obligations Missed. What Now?

An 18-hour ransomware outage. No authority notified. The 24h early warning deadline passed before systems were restored. Three AI systems analyze exposure, retroactive disclosure options, and dual GDPR risk.

May 23, 2026 Executive Liability

NIS2 CEO Personal Liability After a Cyber Incident

NIS2 Article 20 made executives personally accountable. Can a CEO be personally fined? Temporarily banned from management? Three AI systems agree on the framework — and diverge on what actually triggers personal enforcement.

May 23, 2026 Supply Chain

Does NIS2 Apply to Automotive Manufacturers in the Supply Chain?

A 220-employee Tier 2 automotive supplier is asked for NIS2 compliance by its Tier 1 customer. Direct regulatory obligation vs. contractual pressure — three AI systems give three different sequencing strategies.

May 23, 2026 Critical Infrastructure

NIS2 and Water Utilities: SCADA Security and Dual-Authority Notification

A municipal water utility serving 180,000 residents. OT/IT convergence increasing. Three AI systems identify three different primary compliance gaps — OT asset inventory, dual-authority notification, and legacy vendor supply chain failure.

Submit your own NIS2 compliance question — analyzed by Claude, Gemini and DeepSeek simultaneously.

Analyze my NIS2 situation →

Other Xi AI compliance verticals

EU AI Act compliance →