cc3976fb7f
- Split competitive-analysis-2026-05.org → TOC + 9 competitor files in ideas/competitors/. Dropped date from filename. All competitor UUIDs generated, TOC keeps original UUID for backlink continuity. - Deleted passepartout-economics.org archive (replaced by 27-node KB). - Inlined 5 'See also' blocks into natural prose (compliance-index, first-mover-window, revenue-table, orders-of-magnitude-time, native-org-knowledge-base). - Linked 7 orphan compliance pages back to compliance index + finished truncated sentences. - Linked all 14 Agora requirement docs from topic-relevant pages (identity→lisp-machine-security, infrastructure→compute-marketplace, social-space→growth-strategy, exchange→agora-contracts, etc.). - Linked ai-industry-impact from investment-thesis, sufficiency-flip, verification-appliance, effects-growth-flywheel (up from 1 to 10+ pages). - Fixed CREATED timestamps to use git commit dates instead of today. - Made all links absolute from root (no port inheritance). - Removed stale agora/docs/ duplicate content.
1.7 KiB
NIS 2 Directive (EU Network and Information Security)
EU directive (effective October 2024, member states transpose by October 2025). Replaces NIS (2016). Expands scope from 7 sectors to 15, covering: energy, transport, banking, financial market infrastructure, health, drinking water, wastewater, digital infrastructure, ICT service management, public administration, space, postal services, food, chemicals, manufacturing (critical products).
Key requirements: risk management measures (supply chain security, incident handling, business continuity), incident notification (24-hour early warning, 72-hour full report), C-level accountability (management can be held personally liable for non-compliance), supply chain security for critical vendors.
Who must comply: ~160,000 entities across EU (up from ~30,000 under NIS). Two tiers: essential (strict) and important (moderate). Extraterritorial — any organization providing services to EU entities in covered sectors.
Penalties: Up to 10M EUR or 2% of global turnover (essential entities). Personal liability for management.
Why it matters: NIS2 is the largest European cybersecurity mandate ever. Every requirement maps to a gate rule: supply chain access verification, incident notification triggers, business continuity approval chains. First-mover advantage is urgent — the transposition deadline is October 2025 (17 months). Organizations need gate packages now. No competitor has a declarative gate model that maps to NIS2 requirements. $50K/yr NIS2 gate package is a fast sell.