---
layout: page
title: MISP, legal and policy compliance
permalink: /compliance/
toc: true
---

# MISP threat sharing - legal and policy compliance

The MISP project is a large open source project, aiming to support and improve information sharing and threat intelligence analysis at large.

As the MISP project is used in different geographical regions (Europe, North America, Asia-Pacific, South America and Africa) as well as different sectors of activities (spanning a wide selection such as cyber security, intelligence community, law enforcement and NGOs), a set of legal and policy compliance analyses are available to ensure compliance while using the software, documents or libraries contained within the MISP project.

## GDPR - General Data Protection Regulation

- [Information sharing and cooperation enabled by GDPR](/compliance/gdpr/information_sharing_and_cooperation_gdpr.html) latest version 1.1 published on Tuesday, 30 January 2018. [PDF](/compliance/gdpr/information_sharing_and_cooperation_gdpr.pdf)

## ISO/IEC 27010:2015 - Information security management for inter-sector and inter-organizational communications

- [MISP as supporting platform for sharing information, following ISO/IEC 27010:2015](/compliance/ISO-IEC-27010/) latest version 1.0 published on Tuesday, 20 March 2018.

## How MISP enables stakeholders identified by the NISD to perform key activities

- [How MISP enables stakeholders identified by the NISD to perform key activities](/compliance/NISD) latest version 1.0 published on Wednesday, 18 April 2018.