By default, new organisations start with no frameworks enabled. An admin must select which regulatory frameworks apply to your organisation before the relevant sidebar sections appear.
Navigate to Settings → Company Profile
Click Settings at the bottom of the sidebar, then choose Company Profile.
Find the Enabled Frameworks section
Scroll down to the Enabled Frameworks area. You'll see checkboxes for each available framework:
- DORA — Digital Operational Resilience Act (EU financial entities)
- NIS2 — Network and Information Security Directive (EU essential/important entities)
- ISO 27001 — International ISMS standard
- GDPR — General Data Protection Regulation
- EU AI Act — Artificial Intelligence Act
Select your frameworks
Check the frameworks that apply to your organisation. Common combinations:
- EU Financial Services: DORA + GDPR
- EU Critical Infrastructure: NIS2 + GDPR
- International certifications: ISO 27001 + GDPR
- AI providers/deployers: EU AI Act + GDPR
- Comprehensive: All five frameworks for full regulatory coverage
Save changes
Click Save. The sidebar will update immediately to show the selected frameworks and their sub-modules.
Only Admin users can change the enabled frameworks. If you're an Editor or Viewer, ask your administrator to enable the frameworks you need.
Disabling a framework hides it from the sidebar but does not delete any data. You can re-enable it later and all your records will still be there.