Compliance & Frameworks

Regulations & Frameworks We Cover

From information security and risk to privacy, financial regulation, and ESG—ActiveERM helps you map controls, collect evidence, and stay audit-ready across the frameworks that matter to your industry.

Information Security & Cyber

  • ISO 27001 (ISMS)
  • ISO 27002 (Controls)
  • SOC 2 Type I & II
  • NIS2 Directive
Learn more →

Risk Management

  • ISO 31000 (Risk Management)
  • ISO 27001 risk assessment
  • Operational & strategic risk
Learn more →

Business Continuity

  • ISO 22301 (BCMS)
  • Recovery plans & BIA
  • RTO / RPO
Learn more →

Privacy & Data Protection

  • GDPR (EU/UK)
  • ISO 27701 (PIMS)
  • Data subject rights & DPIAs
Learn more →

Financial & Sector Regulation

  • SOX (Sarbanes–Oxley)
  • PCI DSS
  • DORA (EU digital resilience)
  • Sector-specific requirements
Learn more →

ESG & Sustainability

  • CSRD / EU Sustainability Reporting
  • GRI, SASB, TCFD
  • Carbon & impact metrics
Learn more →

One platform. Many frameworks.

Whether you need to demonstrate ISO 27001, SOC 2, GDPR, or sector-specific requirements, ActiveERM keeps your controls, evidence, and audits in one place.

Request Demo