Free maturity assessment

Get a quick compliance score

Answer 20 questions and get a PDF report with your maturity score. No license required.

CSRD

The board treats sustainability as an integrated part of corporate governance.

1/20

CSRD

Executive ownership for ESRS reporting is clearly assigned.

2/20

CSRD

We have performed a double materiality assessment aligned with ESRS 1.

3/20

CSRD

Material topics are validated with internal and external stakeholders.

4/20

CSRD

Our data foundation can deliver auditable ESRS data points.

5/20

CSRD

We have a tagged XBRL solution ready for digital reporting.

6/20

CSRD

We have a documented process for collection, QA and sign-off of the report.

7/20

CSRD

The auditor is involved in planning assurance for the current reporting year.

8/20

DORA

We have a documented ICT risk management framework covering the whole organisation.

9/20

DORA

Critical ICT assets and dependencies are identified and mapped.

10/20

DORA

We classify and report ICT incidents according to the regulation.

11/20

DORA

We have a plan to report major incidents within the regulatory timeframes.

12/20

DORA

We run regular resilience testing (TLPT where applicable).

13/20

DORA

We maintain a register of critical third parties with current contracts.

14/20

DORA

Contracts include DORA-required clauses on audit, contingency and exit.

15/20

DORA

The board sets and monitors ICT risk appetite.

16/20

NIS2

We have determined whether the organisation is essential or important under NIS2.

17/20

NIS2

We run a risk management process covering information security and continuity.

18/20

NIS2

Technical and organisational measures are documented and tested.

19/20

NIS2

We set and monitor security requirements on critical suppliers.

20/20