HoneyLake™
Legal expertise and IT competence in one specialist.






HoneyLake™ is led by Heikki — a University of Tartu Law graduate and certified IT auditor with 20+ years of ERM experience across Estonia, Spain, and the UK. This combination is rare: legal liability and technical execution understood by the same person, without anything getting “lost in translation”. We were built to be the precise partner the GRC (Governance, Risk and Compliance) field demands.
Under NIS2 and GDPR, your management board carries personal liability for information security failures — not just the company. Most advisors either understand the legal exposure or the technical controls, but not both simultaneously. When those competencies are split across different consultants, obligations get softened in translation, controls get under-specified, and the gap that remains is the one that becomes a regulatory finding — or worse, a board-level enforcement action.
We work exclusively with Estonian companies. The regulatory landscape here — E-ITS, the NIS2 transposition, and Estonian DPA enforcement priorities — is specific and moves fast. We do not apply generic frameworks lifted from multinational consulting playbooks. Every engagement is scoped against the real obligations your Juhatus faces, and every recommendation is one you can implement with the resources an Estonian SME actually has.
- Internationally recognised certifications: Google, Microsoft, CompTIA, ISC² and PECB
- Heikki — University of Tartu Law graduate, certified IT auditor and cybersecurity expert
- Active member: ISACA Estonian Chapter / EISAÜ
- Risk management, auditing and consulting
- Implementation of ISO 27001 and ISO 27005 / ISO 31000
- Aligning systems with E-ITS requirements
- Implementing baseline security controls
- Enterprise Risk management systems (ERM)
- Training, particularly in the field of social engineering