Additional Info

Company size (employees)50 to 99
Headquarters RegionEurope


To deliver cybersecurity compliance services, ImmuniWeb collaborates with law firms around the globe. A law firm reviews your cybersecurity compliance from a legal viewpoint and creates an action plan to meet regulatory requirements, then ImmuniWeb helps implement the technical part.

ImmuniWeb helps comply with the following laws and regulations:

US Federal Laws including HIPAA, SOX, GLBA, CIRCIA, FCRA and FATCA
US State Laws including New York Shield Act and California CCPA/CPRA
Administrative Rules including those by FTC, HHS, CFPB and FCC
Executive Order including EO 14028

European laws: AI Act, DORA, GDPR, NIS 2, Swiss FDPA, UK DPA, UK GDPR

Standards and Frameworks: SOC2, PCI DSS, ISO 27001 & 27701, NIST Special Publications, CMMC

How we are different

Attorney-client Privilege
Security findings and audit reports can be protected by attorney-client privilege and thus shielded from compelled disclosure in litigation or investigations.

Technical and Legal Certainty
A law firm can review your cybersecurity strategy to ensure that it is not just technically sound but that it also complies with applicable laws and regulations.

Legal Evidence of Compliance
Once the non-conformities are remediated, a law firm can provide you with a letter of conformity to be shared with your clients, investors or regulators.

Professional Secrecy
Security findings and audit reports are protected by professional secrecy that law firms and lawyers have in contrast to non-lawyer consultants and firms.

Reduced Risks
By combining cybersecurity experts and lawyers you not just prevent data breaches but reduce your exposure to lawsuits, fines and other penalties by regulators.