Question 1

What regulations does Regtrue cover?

Accepted Answer

Regtrue covers major EU regulations including CSRD/ESRS (sustainability reporting), VSME (simplified ESG for SMEs), NIS2 (cybersecurity), DORA (digital operational resilience), EUDR (deforestation due diligence), CBAM (carbon border adjustment), PPWR (packaging), and EHS/TTOS (workplace safety). Each module includes structured questionnaires, national transposition overlays (e.g. Estonian KüTS for NIS2, TTOS for EHS), and audit-ready exports.

Question 2

How does evidence attachment work in Regtrue?

Accepted Answer

Every answer in Regtrue can be linked to supporting evidence — PDFs, spreadsheets, URLs, or notes. When you export your report, all evidence is included in an audit pack with full traceability. Auditors can verify exactly where each data point came from.

Question 3

What does the AI in Regtrue actually do?

Accepted Answer

Regtrue uses multi-provider AI (GPT-4, Gemini, Claude) to accelerate compliance work. AI assists with auto-filling from documents, suggesting answers based on your data, validating consistency, and generating report narratives. However, AI assists but never fabricates — you always stay in control and every AI action is logged.

Question 4

What export formats does Regtrue support?

Accepted Answer

Regtrue supports PDF reports, Excel spreadsheets, JSON data exports, XBRL (eXtensible Business Reporting Language), and iXBRL (inline XBRL) for regulatory submissions. All exports include linked evidence in an audit-ready bundle.

Question 5

Is Regtrue suitable for SMEs?

Accepted Answer

Yes! Regtrue offers a VSME module specifically designed for SMEs following the Voluntary SME Sustainability Reporting Standard. It provides a simplified approach to ESG reporting with guided wizards and AI assistance, making compliance accessible without a dedicated sustainability team.

Cybersecurity compliance.
NIS2 and DORA in one system.

Risk assessment.
Controls. Incidents.

Digital resilience.
For financial entities.

Check if it applies to you.

Built for NIS2 and DORA.
Not adapted from something else.

AI-drafted answers

Evidence chain

Gap analysis

Export

EU base. Your country's rules.
Built in. Not bolted on.

Want to see how it works?

Cybersecurity compliance.
NIS2 and DORA in one system.

Risk assessment.
Controls. Incidents.

Digital resilience.
For financial entities.

Check if it applies to you.

Built for NIS2 and DORA.
Not adapted from something else.

AI-drafted answers

Evidence chain

Gap analysis

Export

EU base. Your country's rules.
Built in. Not bolted on.

Want to see how it works?

Cybersecurity compliance.NIS2 and DORA in one system.

Risk assessment.Controls. Incidents.

Digital resilience.For financial entities.

Check if it applies to you.

Built for NIS2 and DORA.Not adapted from something else.

AI-drafted answers

Evidence chain

Gap analysis

Export

EU base. Your country's rules.Built in. Not bolted on.

Want to see how it works?

Cybersecurity compliance.NIS2 and DORA in one system.

Risk assessment.Controls. Incidents.

Digital resilience.For financial entities.

Check if it applies to you.

Built for NIS2 and DORA.Not adapted from something else.

AI-drafted answers

Evidence chain

Gap analysis

Export

EU base. Your country's rules.Built in. Not bolted on.

Want to see how it works?

Cybersecurity compliance.
NIS2 and DORA in one system.

Risk assessment.
Controls. Incidents.

Digital resilience.
For financial entities.

Built for NIS2 and DORA.
Not adapted from something else.

EU base. Your country's rules.
Built in. Not bolted on.

Cybersecurity compliance.
NIS2 and DORA in one system.

Risk assessment.
Controls. Incidents.

Digital resilience.
For financial entities.

Built for NIS2 and DORA.
Not adapted from something else.

EU base. Your country's rules.
Built in. Not bolted on.