Resilstack
Language
Open app

NIS2 suppliers

Resilstack

The living cyber resilience passport for NIS2 suppliers.

Prepare evidence, reduce questionnaire friction, and share a resilience statement under explicit consent.

Open workspaceView plans
Map your evidence to:NIS2 · UE 2024/2690ISO 27001NIST CSFENS

Resilience passport

Managed

Resilience level

Strong

N3 · Local challengeVerificación cruzada OK

a17f3c9e21b8a4d6b3

Published Jun 25, 2026

01

Every customer asks you to prove security. And each one their own way.

Endless questionnaires

Every deal, every customer, their own spreadsheet. You answer the same thing again and again.

Scattered evidence

Screenshots, PDFs and emails spread across folders nobody finds in time.

No proof of progress

Without history or sources, you can't show your posture improving over time.

02

Collect once. Prove to anyone.

Guided self-assessment

Cybersecurity controls and indicators with status, threshold and recommendation.

Verified indicators

Value, source and proof: from opinion to data, with freshness and expiry.

Shareable passport

A minimal public signal and consented, traceable, revocable links.

How it works

  1. 1

    Connect or upload

    Connect a source or attach your control's document.

  2. 2

    Verify

    OAuth · Agent · Document

  3. 3

    Share

    Publish the passport and share links under consent.

Secure by default

RLS as the primary isolation layer, private evidence, and append-only logs with a dedicated role in the target architecture.

Reusable proof

Operational documents, internal scoring, and control-evidence links for procurement, legal, and security reviews.

Consent

Share links with expiration, revocation, light confidentiality terms, and access logs.

A plan for every size

Free

Solo

0 €/mo
  • 1 users
  • 5 evidence items
  • 1 domains
Get started

Starter

SMB

49 €/mo
  • 3 users
  • 50 evidence items
  • 2 domains
Get started
Recommended

Pro

Active supplier

149 €/mo
  • 10 users
  • 250 evidence items
  • 10 domains
Get started

Supplier Critical

Critical supplier

399 €/mo
  • 25 users
  • 1000 evidence items
  • 25 domains
Get started

Enterprise

Large organization

Talk to sales

Security and privacy by design

RLS isolation

Each organization sees only its own data: Row-Level Security as the primary isolation.

Data in the EU

Infrastructure and storage in the European Union.

Aggregates only

Only counts and hashes leave your systems — never credentials or personal data.

Connect your sources

Automatic evidence from where you already work. Ephemeral by default; continuous only with your consent.

Microsoft 365Google WorkspaceAWSGitHub

Frequently asked questions

Does Resilstack certify or audit?

No. Resilstack is a verifiable-evidence and aggregated-signals tool; it does not issue certifications or replace a formal audit.

What does a passport recipient see?

A qualitative signal (resilience level), the proof level and the verification status. Never percentages, controls, evidence or technical results.

Do you store my credentials?

In ephemeral mode nothing is stored. Only if you enable continuous monitoring is the secret encrypted in your vault, with consent and revocable.

Which frameworks does it use?

Commission Implementing Regulation (EU) 2024/2690 (NIS2) as the anchor, mapping the same evidence to ISO 27001, NIST CSF, ENS and other European schemes.

Where is my data?

In the European Union, with per-organization isolation via RLS and access logs.

Prove your resilience without redoing it every time.

Start free. Connect a source, measure your controls and share your first passport today.

Open workspaceView plans