Search | ENISA

Guidelines for SMEs on the security of personal data processing

Publications 27 January, 2017

ENISA undertook a study to support SME’s on how to adopt security measures for the protection of personal data, following a risk-based approach. In particular, the objectives of the study were to facilitate SMEs in understanding the context of the…

Security Framework for Trust Service Providers

Publications 11 March, 2021

This document proposes a security framework to achieve compliance with Article 19 of the eIDAS Regulation. As illustrated below, this security framework includes specific guidelines for TSP on: 1) Risk management related to the security of the eIDAS…

Remote ID Proofing

Publications 11 March, 2021

This report provides an overview of the most common methods for identity proofing with some examples received by stakeholders, presents the current legal / regulatory landscape and supporting standards at the international and EU level and provides…

Stock taking of security requirements set by different legal frameworks on OES and DSPs

Publications 15 November, 2019

In order to support organisations in their process of identifying appropriate security measures, based on the provisions of both NISD and GDPR, this report uses as basis the pre-existing ENISA guidance and presents a mapping of already identified…

Annual Privacy Forum (APF) 2025

Events 28 March, 2025

After 12 years, the Annual Privacy Forum (APF) enters into a new era! ENISA passes the baton to Goethe University Frankfurt and Karlstad University for the continuation of the successful event that bridges research and policy…

From Cyber to Outer Space: A Guide to Securing Commercial Satellite Operations

News 26 March, 2025

The European Union Agency for Cybersecurity (ENISA) explores the cybersecurity threat landscape of space to strengthen the resilience of commercial satellites.

Engineering Data Protection in the wake of AI

Events 21 March, 2025

ENISA organizes a webinar aiming to discuss the latest developments and considerations on engineering personal data protection in the AI era.

Ransomware: Publicly Reported Incidents are only the tip of the iceberg

News 29 July, 2022

The threat landscape report on ransomware attacks published today by the European Union Agency for Cybersecurity (ENISA) uncovers the shortcomings of the current reporting mechanisms across the EU.