Compliance Self-Assessments
Pick a standard, answer a short control survey, and get an instant readiness score with a domain-by-domain breakdown and a prioritised gap list — from CERT-In empanelled, PCI QSA authorised auditors. Free, no obligation.
Payments & Cards
Information Security
ISO/IEC 27001:2022
See how ready your ISMS is for ISO/IEC 27001:2022 certification — across the management system and Annex A controls.
Start assessment →22 questions · 6 domainsSOC 2 (Trust Services Criteria)
Assess your readiness for a SOC 2 examination across the Security, Availability, Confidentiality, Processing Integrity and Privacy criteria.
Start assessment →Data Privacy
DPDP Act, 2023 (India)
Check your readiness for India’s Digital Personal Data Protection Act, 2023 — notice, consent, data-principal rights, security and breach obligations.
Start assessment →22 questions · 6 domainsGDPR (EU / UK)
Assess your GDPR readiness — lawful basis, data-subject rights, records of processing, security and international transfers.
Start assessment →20 questions · 6 domainsISO/IEC 27701 (Privacy)
Assess readiness for a Privacy Information Management System (PIMS) extending ISO 27001 with controller and processor privacy controls.
Start assessment →Healthcare
HIPAA (Security & Privacy)
Assess your readiness against the HIPAA Security, Privacy and Breach Notification Rules for protecting ePHI.
Start assessment →20 questions · 6 domainsHITRUST CSF
Assess readiness for a HITRUST CSF assessment — a certifiable, risk-based framework harmonising HIPAA, ISO, NIST and more.
Start assessment →Cyber Frameworks
NIST CSF 2.0
Benchmark your cyber programme against the six functions of the NIST Cybersecurity Framework 2.0 — Govern, Identify, Protect, Detect, Respond, Recover.
Start assessment →20 questions · 6 domainsCERT-In Cyber Audit
Check your readiness for a CERT-In empanelled cyber audit and compliance with the CERT-In Directions (April 2022).
Start assessment →22 questions · 6 domainsCIS Controls v8.1
Measure your cyber hygiene against the 18 CIS Critical Security Controls — a prioritised, practical baseline.
Start assessment →22 questions · 6 domainsNIST SP 800-53 Rev.5
Assess your control posture against NIST SP 800-53 Rev.5 control families — the baseline for FISMA, FedRAMP and many US programmes.
Start assessment →BFSI (India)
RBI Cyber Security Framework
Assess your readiness against the RBI Cyber Security Framework for banks — governance, baseline controls, SOC and incident reporting.
Start assessment →22 questions · 6 domainsSEBI CSCRF
Assess readiness against SEBI’s Cybersecurity and Cyber Resilience Framework for regulated entities — anchored on the NIST functions plus SEBI-specific mandates.
Start assessment →18 questions · 6 domainsSWIFT CSP (CSCF)
Assess readiness against the SWIFT Customer Security Controls Framework for your SWIFT-connected environment.
Start assessment →18 questions · 6 domainsNPCI UPI / TPAP Audit
Assess readiness for an NPCI UPI / Third-Party App Provider (TPAP) security audit and PSP/UPI ecosystem controls.
Start assessment →Resilience
Middle East
Global / EU
NIS2 Directive (EU)
Assess readiness against the EU NIS2 Directive cybersecurity risk-management measures and incident-reporting obligations.
Start assessment →20 questions · 6 domainsCMMC 2.0 (Level 2)
Assess readiness for CMMC 2.0 Level 2, aligned to NIST SP 800-171 controls for protecting Controlled Unclassified Information (CUI).
Start assessment →These self-assessments give an indicative readiness view for planning. A formal gap assessment by a qualified auditor is required before certification. Looking for downloadable control checklists instead? See our free checklists.
