Lokale aanwezigheid · IJsland

Cybersecuritydiensten in IJsland

Cybersecurity · NIS2 (EEA) · GDPR · CERT-IS coordination

EEA-grade cybersecurity for IJsland — coordinated with CERT-IS.

From Hafnarfirði, we support Icelandic organisations adopting NIS2 via the EEA framework, complying with Persónuverndarlög (IJsland's GDPR transposition enforced by Persónuvernd), en coordinating with CERT-IS during significant incidents. IJsland's small but highly digital economy faces concentrated risk — a few core banks under FME (Fjármálaeftirlitið) supervision, energy operators on a single-island grid, en a tourism sector dependent on always-on platforms. The EEA NIS2 transposition introduces formal essential en important entity obligations for the first time. We bring Nordic-region delivery experience, EEA data residency, en SOC capacity in Stockholm en Zoetermeer.

Regulatoir landschap

IJslandse en EER-frameworks binnen scope

NIS2 (EEA transposition)

IJsland implements NIS2 via the EEA agreement; essential en important entity obligations enforced by sector authorities.

Persónuverndarlög

Icelandic Data Protection Act (lög nr. 90/2018) enforced by Persónuvernd; 72-hour breach notification.

CERT-IS coordination

IJsland's national CERT under the Electronic Communications Office; incident reporting en threat advisories.

FME guidance

Fjármálaeftirlitið — operational resilience en ICT risk supervision for Icelandic banks en insurers.

EU regulations via EEA

DORA, eIDAS, en broader EU cyber acquis applied through the EEA Joint Committee.

72 hours
GDPR breach notification
Bron: Persónuvernd
Concentrated
Domestic ISP/operator population
Bron: Fjarskiptastofa
Active since 1994
EEA membership
Bron: EFTA
Financiële dienstverleningEnergy & geothermalTourism & hospitality techPublic sector

Hoe wij in IJsland werken

AI Security & Guardrails

EU AI Act adoption through the EEA agreement, Persónuvernd-aligned data protection guardrails, en ISO 42001 governance for Icelandic AI en analytics projects.

Meer informatie

Applicatiebeveiliging

Application en API security testing for Icelandic SaaS en online banking platforms.

Meer informatie

Cloudbeveiliging

Cloud architecture reviews en EEA data-residency advisory for organisations balancing scale with sovereignty.

Meer informatie

SOC 24×7

24×7 detection from EEA SOCs with CERT-IS coordination en Icelandic incident reporting flows.

Meer informatie

GRC

NIS2 readiness, Persónuverndarlög alignment, ISO 27001, en FME-ready resilience programmes.

Meer informatie

Veelgestelde vragen · IJsland

Is NIS2 already in force in IJsland?
IJsland adopts NIS2 through the EEA framework. Sector authorities are formalising obligations for essential en important entities. Early-readiness work pays off ahead of national-law commencement.
Where does our data sit?
Telemetry en case data remain inside the EEA — primarily processed in our Stockholm en Zoetermeer SOCs. Cross-border transfer outside the EEA only with documented safeguards.
How do you operate alongside Icelandic regulators?
Our SOC drafts incident notifications en evidence packs in English. For Persónuvernd, CERT-IS, or FME submissions that require Icelandic, we coordinate with translation specialists en your local counsel to file on time.

Bereik ons IJsland-advisory-team

Whether you are mapping NIS2 obligations, responding to a CERT-IS advisory, or preparing for an FME review, we respond within one business day.

IJsland
Fornubúðir 5, 220 Hafnarfirði,
Hafnarfirði, IJsland
Telefoon: +354 662 8660
reykjavik@thegatewaydigital.com
Ik heb gelezen en ga akkoord met het privacybeleid en gebruiksvoorwaarden.*
Ik geef toestemming om e-mailupdates, nieuwsbrieven en andere communicatie van G'Secure Labs te ontvangen.