BG Beter Geregeld ICT

Blog

Praktische gidsen over toegangsbeheer, IT-governance, compliance en MKB-administratie, direct bruikbaar, zonder jargon.

★ Pillar-gidsen

Diepgaande overzichten per thema

Toegangsbeheer

Access Management for SMBs: The Complete Guide (2026)

From your first access matrix to periodic reviews and directory sync — everything you need to know when your business grows beyond 10 people but you don't have an IT department yet.

3 min
Compliance

ISO 27001 for SMBs without €50k in consultancy fees

ISO 27001 is manageable once you understand the structure. Here's the minimum work a 30-person SMB needs to pass a Stage 2 audit, what it costs, and where consultants actually add value.

2 min
Offboarding

Watertight Offboarding in 12 Steps

Someone is leaving. In SMEs, this is where most data breaches begin. Here is a checklist that covers what you actually need to do — with deadlines, owners, and pitfalls.

2 min
Access reviews

Periodic access reviews: process, frequency, and audit evidence

An access review is an audit requirement that nearly every SMB struggles with. Once you set it up properly the first time, the second round won't cost you a whole week.

2 min
Microsoft 365 & Entra ID

Microsoft 365 governance for SMBs — pragmatic, not perfectionist

M365 is the largest piece of SaaS in most SMBs. This guide walks through the governance layers — identity, licensing, MFA, Conditional Access, data, retention — covering what's truly essential and what can wait.

2 min
Boekhouding & facturatie

SMB invoicing from quote to payment: the complete guide

Quote, invoice, reminder, demand letter, bookkeeping, VAT return. The entire chain explained for business owners who handle it themselves or with minimal accountant support.

2 min
AVG & privacy

GDPR Compliance for SMBs: The Practical Minimum

GDPR doesn't require a €10,000 project or a DPO for most small businesses. Here's what every SMB actually needs — based on what the Dutch DPA really checks for.

2 min
Security zonder IT-afdeling

Security for SMBs without an IT department: what should you do this quarter?

No IT team, but still accountable. This pillar gives you a priority stack: do this first, then that, then the less urgent stuff. Each item links to a deeper guide.

2 min
PDF redactie

PDF redaction for SMBs: the complete guide

Redacting a PDF means permanently removing sensitive data — not dragging a black box over it, which anyone can undo in 30 seconds. This guide explains the real process.

2 min
Tools & checks uitgelegd

VIES VAT number check: what it is, why it matters, and how to do it quickly

When you invoice a business in another EU country, you are often legally required to verify their VAT number via VIES. What is VIES, what does it check (and what doesn't it), and how do you maintain a proper audit trail?

4 min
Tools & checks uitgelegd

Checking an IBAN by name: why banks no longer do it automatically, and how to handle it yourself

Since 2024, Dutch banks no longer automatically verify the account holder's name against an IBAN for every payment. For business finance teams, that's a real risk — here's how to tackle it practically.

3 min

Recente artikelen

Boekhouding & facturatie

Credit Notes: When, How, and What NOT to Do

Correcting an invoice doesn't mean deleting it — that's not allowed. You issue a credit note. Here are the three situations where you need one, and the pitfalls to avoid.

2 min · 15 Nov 2025
PDF redactie

OCR redaction: making scanned PDFs editable for redaction

A scanned PDF is a series of images, not text. Searching and redacting won't work without OCR. Here's the workflow.

2 min · 13 Nov 2025
Microsoft 365 & Entra ID

OneDrive sharing policy: how do you prevent per-file share chaos?

People share files from OneDrive all day long. How do you set up tenant-wide policies that encourage secure behaviour without killing productivity?

2 min · 13 Nov 2025
Security zonder IT-afdeling

Social engineering: how to recognise CEO fraud and vishing?

Not every attack arrives via email. Phone, SMS, LinkedIn message — modern social engineering uses every channel. Three patterns and how to counter them.

2 min · 10 Nov 2025
Offboarding

Watertight Offboarding in 12 Steps

Someone is leaving. In SMEs, this is where most data breaches begin. Here is a checklist that covers what you actually need to do — with deadlines, owners, and pitfalls.

2 min · 10 Nov 2025
AVG & privacy

DPIA — Data Protection Impact Assessment: when is it required, and when can you skip it?

A DPIA sounds like something only large enterprises need to worry about. For SMBs it's rarely required — but there are a handful of specific situations where it is. Here's the decision tree.

2 min · 10 Nov 2025
Compliance

The management review: what goes in it and who takes part?

One of the clause-9 requirements of ISO 27001. Annual, with senior management, 2 hours. Here is the agenda that an auditor will accept — and that works as a practical exercise for you.

2 min · 10 Nov 2025
Online groeien

Collecting Reviews Automatically After Project Handover

Ask for a review at exactly the right moment — without having to remember it yourself.

1 min · 08 Nov 2025
Boekhouding & facturatie

UBL and PEPPOL: when does e-invoicing become mandatory for you?

From 2026, the Netherlands is on the EU path to mandatory e-invoicing. For government clients, UBL is already required — B2B is next. Here's what you need to arrange now.

2 min · 07 Nov 2025
PDF redactie

Stripping PDF metadata: why it matters and what's hiding inside

A PDF often contains 10× more data than what you see — author name, software version, edit history, revisions, comments. Here's how to clean it up.

2 min · 05 Nov 2025
Microsoft 365 & Entra ID

SharePoint permissions: why they spiral out of control and how to tame them

SharePoint is where SMBs suffer the most unintentional data leaks: folders visible to "everyone in the company" when they were meant to stay internal. Here are the mental models you need.

2 min · 05 Nov 2025
Security zonder IT-afdeling

Laptop stolen: the first 30 minutes

Someone calls: laptop stolen from the car. The clock is ticking. Here are the 10 steps you MUST take in the first 30 minutes, in order.

2 min · 02 Nov 2025