NIS2 Compliance

Deskripsyon

NIS2 provides activity logging, file integrity monitoring, access protection and vulnerability scanning to help sites comply with the EU NIS2 directive.

NIS2 Compliance: The 1st WordPress NIS2 Plugin

NIS2 is the second iteration of the EU’s Network and Information Security (NIS) directive, a primary cybersecurity law that expands the scope of the original NIS directive to cover more sectors and entities, such as energy, transport, banking, healthcare, and digital infrastructure.

The directive mandates stricter security requirements, includes supply chain security, and assigns personal accountability to management for non-compliance.

Quick and easy setup

Choose which modules you want to enable, configure their settings and start monitoring your site in minutes.

Available modules are:
– Activity Logger: logs important events such as user logins, content changes, plugin/theme installations and more.
– File Integrity Monitoring: monitors core WordPress files, themes and plugins for unauthorized changes.
– Access Protection: protects login and admin pages with Google reCAPTCHA v2 and limits access
– Vulnerability Scanner: scans installed plugins and themes for known vulnerabilities using the WPScan database.
– Compliance Checklist: provides a checklist of security best practices to help you improve your site’s security posture

Third party services

This plugin relies on the following third-party/external services:

Google reCAPTCHA v2
Used to protect the WordPress login forms against automated abuse and spam.
– Data sent: when a user interacts with the login form, the plugin loads the reCAPTCHA JavaScript API and sends the user’s IP address and form interaction data to Google’s reCAPTCHA service in order to validate the request.
– Service provider: Google LLC
– Terms of Service: https://www.google.com/intl/en/policies/terms/
– Privacy Policy: https://policies.google.com/privacy

IP-API.com
Used to perform basic geolocation based on the visitor’s IP address (e.g., country, city, ISP).
– Data sent: the visitor’s public IP address is queried against the ip-api.com service. No additional personal or sensitive data is transmitted.
– Service provider: IP-API.com
– Terms of Service: https://ip-api.com/docs/legal
– Privacy Policy: https://ip-api.com/docs/legal

F.A.Q.

Does the plugin conflict with security plugins?
No. NIS2 detects other popular security plugins and integrates with them when possible.