T309 · Cat-22 · DORA & Operational Resilience · NIS2/DORA Overlap

NIS2 / DORA Overlap & Dual-Compliance Mapper

Map the compliance overlap between DORA (EU 2022/2554) and NIS2 (EU 2022/2555) for financial entities subject to both. Identify shared controls, DORA-only obligations, NIS2-only requirements, and AI Act overlap. 14-control dual-compliance matrix with deduplication count. Policy Mandate JSON export. Client-side. Zero PII.

Zero PII · Client-side

Last Reviewed · 2026-05-12

🔒 All inputs are processed locally in your browser. No data is transmitted. Do not enter real personal data — use synthetic or anonymised inputs only.

Educational Use Only This tool provides a self-assessment / educational framework for internal planning purposes only. It is not a regulatory audit, legal advice, or a substitute for a formal compliance review by a qualified advisor. Verify all interpretations against the official source text and applicable RTS/ITS/guidance published by the relevant authority.

Entity Profile

Entity Type

Primary Sector (NIS2 classification)

Uses AI in ICT / risk functions Confirmed NIS2 essential/important entity Cross-border operations

About this tool

DORA supersedes NIS2 for in-scope financial entities on ICT risk management (lex specialis). One control satisfying both = deduplication opportunity.

Dual-Compliance Matrix

Complete the entity profile and click "Map Overlap" to see the DORA/NIS2 dual-compliance matrix.