Any standard, regulation, or requirement can be verified using PREMIS. The compliance template editor allows you
to create custom templates tailored to your needs. You can use a pre-made template, if available, or design your own, which we can help you with.
Want to verify a subcontractor or partner?
Select a template and start the PREMIS service for two users. Ask the partner to fill out their details in PREMIS,
then perform the review. This way, you can verify any partner’s compliance with any standard online.
NIS2
ISO 27001
RODO
Information security encompasses various standards and regulations that can be implemented together, and it’s also worth reviewing them together. We offer an integrated assessment template for the NIS2 Directive, ISO 27001, and the Personal Data Protection Act (GDPR).
- One complete compliance check, reports for NIS2, ISO 27001 and GDPR.
- Requirement descriptions provide easy start for everyone.
- The template identifies documents that are required by auditors.
ASPICE
Automotive SPICE (Software Process Improvement and Capability Determination) is a framework based on ISO/IEC 33000 family of standards, used to assess and improve software and systems development processes in the automotive industry. It is widely used by automotive OEMs and suppliers to evaluate development maturity, manage risk, standardize processes, and meet requirements for embedded systems, electronics, and increasingly, autonomous and connected vehicle technologies.
ISO 27001
Effective information security management within an organization is a fundamental requirement for every organization today. The ISO 27001 standard is the most popular requirements description and certification scheme in this area.
- Over 300 checkpoints ensure a thorough compliance assessment.
- The report identifies strengths and weaknesses, enabling effective improvement planning.
- Requirement descriptions provide an easy-to-follow introduction.
IEC
62443-4-2
IEC 62443-4-2 is an international standard that defines cybersecurity technical requirements for components used in industrial automation and control systems. It specifies security capabilities such as authentication, access control, data integrity, confidentiality, and secure communication. The standard helps manufacturers design secure products aligned with defined security levels and supports risk-based protection against cyber threats.
NIST
CSF 2.0
The NIST Cybersecurity Framework 2.0 is a risk-based framework that helps organizations manage and reduce cybersecurity risks. It provides a common structure organized around six core functions: Govern, Identify, Protect, Detect, Respond, and Recover. Version 2.0 expands governance and supply chain risk management guidance, making it applicable across public and private sectors to improve cybersecurity posture, resilience, and accountability.
OWASP
ASVS
OWASP Application Security Verification Standard (ASVS) is a comprehensive framework for assessing the security of web and application software. It defines measurable security requirements across multiple domains such as authentication, access control, input validation, and cryptography. ASVS provides three assurance levels, enabling organizations to align security controls with risk and use it for secure design, development, testing, and procurement.
If you are looking for other standards, please let us know.