Skip to content

Regulatory intelligence for financial institutions

What matters.
When it matters.

From 45 EU/EEA supervisors into one inbox. Classified, routed to the right team, audit-trail documented — in under four hours from publication to sign-off.

Book a demoHow it works

Inside the product · Live

Real findings, not a screenshot.

These are actual Critical and High findings Horizon Scanner caught and rated from 45 EU/EEA sources over the past months — live from the same API that powers the product.

Full product tour
Live
Findings · Inbox6
  • E6 Insurance Markets Call for Simplified Regulations and Enhanced CompetitivenessHigh
  • Slovenia: Ongoing Professional Training for Insurance Agents and BrokersHigh
  • BaFin provides guidance on common error codes in DORA reportingHigh
  • Pillar 3: Complementary National RequirementsHigh
  • Coordination of Banking and Insurance Resolution Work within Financial ConglomeratesHigh
  • PS3/26 – Restatement of CRR requirements – 2027 implementation – finalHigh
Live from the horizon-scanner.com API · refreshed hourly

The compliance reality

Three failure modes that recur in every compliance team we speak to.

  • 01

    Volume overload

    Forty-five authoritative sources — from EUR-Lex and the three ESAs to BaFin, AMF, CSSF and MFSA — are more than any team can monitor consistently. Things drift out of view until a supervisor asks why they were missed.

  • 02

    Wrong recipient

    Solvency II to actuarial. DORA to IT-security. MiCA whitepaper RTS to treasury. TFR to the AML team. In practice everything lands in a generic compliance inbox and sits.

  • 03

    No audit trail

    When the supervisor asks when you became aware of a requirement, the honest answer today is often "we think it was around then." That is a governance weakness that gets expensive at the next inspection.

The five-step pipeline

From the regulator publication to the right desk — in minutes, not days.

  1. 01

    Collect

    45 pre-configured EU/EEA sources — EUR-Lex, ESMA, EBA, EIOPA, BaFin, AMF, ACPR, CSSF, MFSA, FMA, IVASS, AFM and more. Per-source frequencies, plus a deep-backfill sweep every Sunday.

  2. 02

    Relevance check

    Every document is screened against your configured sector and regulatory taxonomy before any deeper analysis. Out-of-scope content is logged and dropped — traceably, not silently.

  3. 03

    Change detection

    Hashes against the previously stored version. Linked PDFs are followed. Pure re-publication is distinguished from genuine substantive updates.

  4. 04

    Score

    Three independent dimensions on a 1–4 scale — regulatory impact, resource intensity, deadline criticality — plus a plain-language summary in German and English. High-risk findings are dual-verified.

  5. 05

    Route

    DORA to IT security and third-party risk. Solvency II to actuarial. MiCA to treasury and compliance. TFR to the AML team. IDD to product governance. CSRD and SFDR to ESG. AI Act to model risk. Every rule is editable; defaults sit at ≈ 90 % accuracy on day one.

Inside the tool

This is what you'll see — not in the pitch deck, but in the real workflow.

Two surfaces, one thread: the dashboard shows what needs your attention today. Ask Horizon answers detail questions with links to concrete findings — no hallucinations, no invented article numbers.

See the product tour

Frameworks

Built around the regulations you're accountable for.

Every source we crawl is tagged against the EU regulatory taxonomy your team already works in. Add a custom framework in minutes; the routing follows.

Custom frameworks, national transpositions, and internal taxonomies map onto the same routing engine. Current focus: insurance and crypto-asset service providers — further financial-institution sectors on demand. Detail pages are live for all eleven frameworks.

Or by institution type: banks · insurers · crypto

Built for you

Built for your role and your institution.

The same supervision lands differently on every role and institution type. Jump straight to yours.

By role

All roles

By institution

All industries

6 months · 7 curated highlights · live

One timeline,
every framework that matters, one truth.

Six months of real supervisor publications across every framework that matters, watched in parallel and classified the day they land. Each pin here would have hit your inbox as a Critical or High finding — routed to the right team in under four hours, recorded in the audit trail.

Dec 2025Today · Jun 2026
Solvency IIDORAIRRDIDD

45 EEA supervisors, fully integrated

EUR-LexESMAEBAEIOPABaFinAMFACPRCSSFMFSACONSOBIVASSAFMDNBFMAFIN-FSACySEC
See every source we monitorRegulatory deadlines 2024–2028

What changes

Concrete impact — not "efficiency".

≈ 20 h
Hours saved per month
for regulated financial institutions
< 4 h
Publication → routing
vs. several days manually
100 %
Audit-trail coverage
every action, every actor
≥ 90 %
Routing accuracy day one
default matrix · insurance + CASPs

Pricing

Three tiers, one clear model. List pricing scoped to your team size — confirmed in the demo call.

Per user / per month. Monthly cancellable, annual prepay saves 16 %. No multi-year lock-in.

Pilot
Three months · half price · 30-day money-back guarantee
Monthly cancellable thereafter. No multi-year commitment.
Start pilot

Essential

Entry tier for small compliance teams that need real horizon scanning without the deeper feature set.

  • All 45 pre-configured EU/EEA sources
  • Standard classification
  • English-language summaries
  • Default routing matrix · insurers + CASPs
  • Email alerts on high-impact changes
  • PDF / CSV audit export
  • Up to 5 users
Book a demo

Professional

Recommended

The tier the product is designed around. Most mid-to-large financial institutions land here.

  • Everything in Essential
  • Up to 20 user-defined custom URL sources
  • Dual-stage verification on Impact ≥ 3
  • Native German summaries alongside English
  • Slack & Microsoft Teams routing
  • Custom routing rules and themes
  • Scheduled board-pack reports
  • Priority support · 24 h SLA
Book a demo

Enterprise

Pan-EEA insurance groups, reinsurers, multi-licence CASPs, and multi-jurisdictional financial groups. No user cap.

  • Everything in Professional
  • Unlimited custom sources
  • Premium curated source packages
  • Summaries in DE / EN / FR / IT
  • Human-review queue
  • Approval workflows for routing
  • SMS escalation
  • Full API access for GRC integration
  • Named Customer Success Manager
  • Contractual SLA
Talk to sales

FAQ

Questions every buyer asks.

What is Horizon Scanner?

Horizon Scanner is a European SaaS platform for regulatory horizon scanning. It monitors around 45 EU/EEA supervisory sources — EBA, EIOPA, ESMA, the ECB and every national financial regulator across the EEA — detects relevant changes automatically, classifies them in multiple stages, and routes them, audit-trail-ready, to the right teams. It is built for compliance teams at European financial institutions, with a focus on insurers and crypto-asset service providers (CASPs). Coverage includes DORA, MiCA, Solvency II, the EU AI Act, the Transfer of Funds Regulation (TFR) and the AMLR.

Where is the data hosted, and who has access?

All hosting on European cloud infrastructure. Strict mandatory tenant separation between customer accounts. Encrypted in transit (TLS 1.2/1.3) and at rest. ISO 27001 certification and SOC 2 Type II readiness on the Year-2 roadmap; current TOMs documented per Art. 32 GDPR.

How does Horizon Scanner process content? Does my data leave Europe?

Processing runs through a multi-layer architecture on European-hosted infrastructure. Only public regulator documents are passed to the automated analysis layer — never personal user data, never customer-confidential content, never end-customer insurance data. The specific processing technology is part of our architecture and is disclosed under NDA during vendor due-diligence.

Are you a high-risk AI system under the EU AI Act?

No. Horizon Scanner operates as a Deployer under Art. 26 EU AI Act. Annex III high-risk categories require scoring of natural persons — we score public regulatory documents, not people. Self-classification under Art. 6(4) is internally documented. Machine-generated outputs are labelled accordingly in the dashboard per Art. 50(4).

How does the audit trail work for a supervisory inspection?

Every action — fetch, relevance verdict, change detection, classification, verification, routing, reviewer confirmation — is recorded immutably with timestamp and actor. Default retention is 5 years, configurable per internal compliance policy. CSV / JSON export for any time window or finding bundle is available on every tier.

How long does onboarding take?

Thirty minutes. Passkey or magic-link invite from your admin — the user registers a device passkey and is in. There is no implementation project, no onboarding consultancy, no integration partner. Default routing matrices for insurers and CASPs are pre-configured and sit on day one.

Which regulators do you cover — and how far ahead do I see deadlines?

By default the EU supervisory authorities (EBA, EIOPA, ESMA, ECB) and every national financial regulator across the EEA plus Switzerland and the United Kingdom — around 45 sources across 32 jurisdictions, fully verifiable. Custom sources can be added in minutes. The binding application and transposition deadlines — from DORA through CRR III/CRD VI and MiCA to the EU AI Act and AMLR — are maintained as a rolling compliance calendar for 2024–2028, each with its legal source.

What do you cover for MiCA, TFR and DORA-relevant CASP topics?

MiCA Reg. (EU) 2023/1114: CASP authorisation (Art. 60–62, CDR (EU) 2025/305+306), whitepapers (Art. 6, CDR (EU) 2025/421), market-abuse Guidelines (ESMA, July 2025), ART/EMT reserves (Art. 36–38). TFR Reg. (EU) 2023/1113: required originator/beneficiary data ≥ €1,000, self-hosted-wallet verification Art. 14(5). DORA Reg. (EU) 2022/2554 applies to CASPs since 17 Jan 2025 — we track inspection themes around Art. 28 ICT third-party register and Art. 30 critical-function outsourcing. Plus AMLA/AMLR (CASPs become obliged entities on 10 Jul 2027) and EU AI Act (high-risk duties from 02 Aug 2026).

Can I integrate with our existing GRC stack?

Webhook out per routing rule from Professional onwards. Full API access on Enterprise covers ingestion into Archer, MetricStream, ServiceNow GRC, or your own data warehouse. Native Slack and Microsoft Teams alerting from Professional upward.

What if the product does not deliver value?

Every new customer gets a three-month pilot at 50 percent of list price plus a thirty-day money-back guarantee: if in your first 30 days we have not surfaced a single regulatory change you would have missed using your manual process, we refund your subscription in full.

From inbox chaos
to auditable compliance.

45 EU supervisors, automatically classified, automatically routed. EU-hosted, regulator-ready, live in 30 minutes.

Book a demoSign in

EU-hosted · GDPR & DPA ready · 30-day money-back guarantee

EU-hosted
Frankfurt · ISO-27001 provider
GDPR Art. 32
TOMs documented · DPA available
Audit trail
Immutable · 5 years · CSV/JSON export
Tenant-isolated
TLS 1.2/1.3 · Encryption at rest
  • EU-hosted
  • Tenant-isolated
  • TLS 1.2/1.3
  • DPA available
  • Art. 32 TOMs
  • No PII processed
  • Four-eyes principle
Security, data residency & audit trail in detail