EU regulation focused on financial sector ICT resilience. Requires banks, insurers, and financial entities to adopt frameworks for ICT risk management, incident reporting, testing, and third-party oversight.

Ensures continuity during cyberattacks or IT disruptions.

Mandates insurance companies to safeguard policyholder data, implement governance councils, and adopt data security controls. Includes strict expectations on handling sensitive health and financial information.

Framework for banks, NBFCs, and payment operators requiring cybersecurity baselines, payment data localization, vendor risk management, and incident reporting. Directly impacts fintech and BFSI compliance in India.

ramework for banks, NBFCs, and payment operators requiring cybersecurity baselines, payment data localization, vendor risk management, and incident reporting. Directly impacts fintech and BFSI compliance in India.

Expanded EU regulation on network and information systems security. Applies to more industries than NIS1, including healthcare, energy, finance, and digital providers. Enforces supply chain security, breach reporting, and governance accountability.

Sector-specific compliance for healthcare data in Abu Dhabi. Defines strict health data privacy, classification, encryption, and cross-border transfer rules. Applies to hospitals, insurers, and digital health platforms.