Cybersecurity with legal-technical judgement.

GDPR, NIS2, DORA, MAGERIT risk analysis, security master plan, incident management and data protection officer. For private companies, Public Administrations and essential-service providers.

Regulatory compliance without useless paperwork.

Spanish and European cybersecurity regulation has grown massively: RGPD/GDPR (2018), LOPDGDD (2018), Esquema Nacional de Seguridad (2010 with 2022 update), NIS2 (Spanish transposition 2024-25), DORA (2025). Each with its own subjective scope and specific requirements.

My job: help you work out what actually applies, in what order to tackle compliance, which controls are critical and which are cosmetic, and how to evidence them when audit time comes.

Articles published on cybersecurity.

GDPR

Does your company need help with compliance?

Book a free session →

Cybersecurity with legal-technical judgement.

Regulatory compliance without useless paperwork.

Articles published on cybersecurity.

GDPR for businesses · Compliance and fines

GDPR for SMEs · Compliance in 10 steps

Data Protection Officer · When mandatory, what they do

Data Protection Impact Assessment

Spanish cybersecurity law · GDPR, ENS, NIS2, DORA

Security master plan · Cybersecurity strategy

SME cybersecurity plan · 20 essential measures

Cybersecurity audit · Full assessment

Cybersecurity consulting · Services and costs

Ransomware · Prevention, detection and recovery

Email security · SPF, DKIM, DMARC anti-phishing

Cloud security · Data protection in the cloud

Does your company need help with compliance?