All frameworks
Your global security & compliance partner
Tidal supports 20+ Global, European and Dutch security, privacy & AI frameworks
All frameworks
ISO 27001
International standard for information security management systems (ISMS), with requirements for establishing, implementing, maintaining, and continuously improving an information security management system.
SOC 2
Service Organization Controls 2, criteria for managing customer data based on five trust service principles.
NIS2
European NIS2 directive for cybersecurity requirements of essential services. Tidal supports both the NIS2 CyberFundamentals and the NIS2 Quality Mark certification process.
DORA
Digital Operational Resilience Act, uniform requirements for the security of network and information systems of financial entities.
GDPR
General Data Protection Regulation, rules for the protection of personal data and privacy rights of EU residents.
ABDO
General Security Requirements for Defence Contracts, security requirements for organisations working with the Dutch Ministry of Defence.
BIO
Baseline Information Security for Government, a standardized set of security measures for all government organisations.
CIS Controls
Prescriptive, prioritized set of cybersecurity practices and defensive actions designed to protect organisations against common cyber attacks.
Cyra
Dutch cyber rating framework providing standardised assessment and rating of cybersecurity maturity for organisations.
DNB ICT Guidelines
Information security guidelines from De Nederlandsche Bank for financial institutions under its supervision.
EBA ICT Guidelines
Guidelines for ICT and security risk management from the European Banking Authority for financial institutions.
ISO 14001
International standard for environmental management systems (EMS), helping organisations improve their environmental performance through more efficient use of resources.
ISO 26000
International guidance standard for social responsibility, helping organisations operate in a socially responsible way that meets stakeholder expectations.
ISO 27017
International standard providing guidelines for information security controls applicable to cloud services, based on ISO 27002 controls adapted for cloud computing.
ISO 27018
International standard for protection of personally identifiable information (PII) in public cloud computing environments, extending ISO 27002 for cloud privacy.
ISO 27701
International standard for privacy information management systems (PIMS), extending ISO 27001 and ISO 27002 to include privacy management requirements.
ISO 42001
International standard for artificial intelligence management systems, providing requirements for establishing, implementing, maintaining and continually improving AI management systems.
ISO 9001
International standard for quality management systems (QMS), with specifications for consistent delivery of products and services.
NEN 7510
Dutch standard for information security in healthcare, with specific requirements for managing medical information.
NIST CSF
NIST Cybersecurity Framework, voluntary guidelines for organisations to better manage and reduce cybersecurity risks.
NIST SP800-53
Standard for security and privacy controls with detailed security control requirements for federal information systems.
RVIT
Security requirements for telecom providers under the Dutch Telecommunications Act.
VSME
Voluntary Sustainability reporting standards for SMEs, providing simplified sustainability reporting requirements for small and medium-sized enterprises across Europe.