ECP vs Cyberday: Which Fits Your Belgian MSP?
Cyberday is an AI-assisted ISMS platform sold direct to organizations, tiered by employee count, with 70+ frameworks. Easy Cyber Protection is a CyFun audit-readiness platform sold to MSPs, with a 5-tier MSP model (Starter setup-only / Practice €499 / Studio €999 / Firm €1,999 / Enterprise bespoke) plus uniform per-client brackets (S €75 / M €250 / L €750), purpose-built for Belgian NIS2. Both help organizations get compliance-ready. The right one depends on who's paying and what framework they need.
At a glance
| Cyberday | Easy Cyber Protection | |
|---|---|---|
| Who buys it | End-client organization (direct) | MSP partner (reseller to SMEs) |
| Pricing model | Per-organization, tiered by employee count | MSP-tier base (5 tiers) + uniform per-client size brackets (S/M/L) |
| Starting price | €250 / month for <20 employees | €399 setup + €75 / first client / month (Starter, no monthly base) |
| Framework coverage | 70+ frameworks (ISO 27001, NIS2, NIST, GDPR, etc.) | CyFun-native (CCB-aligned); ISO 27001 planned |
| MSP / portfolio features | Not built for MSP multi-tenancy | Partner dashboard, branded materials, white-label per client |
| Geography focus | International (Finnish origin) | Belgium-first (NL / FR / EN built-in) |
| AI assistance | AI-assisted ISMS content | TARS agent + AI document assistant |
| Trial / pilot | 14-day free trial, all features | Free MSP compliance org (gated by intake call) |
Sources: cyberday.ai/pricing, cyberday.ai marketing copy. Last verified 2026-04-22.
Where Cyberday fits better
- Your client (or you as an in-house compliance officer) wants to buy an ISMS tool directly — no channel, no reseller
- Your primary framework is ISO 27001, or you need a multi-framework library covering NIST, GDPR, ISO 27017, Cyber Essentials, etc.
- You are based outside Belgium and CyFun is not the relevant NIS2 compliance path
- Your organization has the internal capacity to run the ISMS process in-house (policy owners, evidence collection, review cadence)
- You prefer a direct 14-day free trial to evaluate before buying
Where Easy Cyber Protection fits better
- You are a Belgian MSP and want to package CyFun audit-readiness as a service across your client portfolio
- You want pricing that scales with both your scale (Starter / Practice / Studio / Firm / Enterprise) and your clients' size (S / M / L) — so a 6-client boutique pays differently from a 60-client firm
- You need white-label deliverables (branded reports, policies, training) in your own brand, not the tool's brand
- Your clients need NL / FR / EN materials with Belgian regulatory context (CyFun, VLAIO leverage, CCB alignment)
- You prefer to scale via sign-one-deliver-many rather than onboarding each end client as a separate SaaS subscription
The pricing math
Cyberday is per-organization, tiered by employee count, sold direct. ECP is sold to the MSP on two axes: MSP scale (Starter / Practice / Studio / Firm / Enterprise) and client size (S / M / L). The numbers below use a 50-client MSP portfolio where the average client has 30 employees (S-size, < 1,000 entities) — placing the MSP on the Studio tier.
Cyberday — 50 clients × 30 employees each
- • Each client subscribes in the 20-49 tier: €320 / month per organization
- • Aggregate platform cost across 50 clients: 50 × €320 = €16,000 / month
- • Cost falls on the end client (direct billing), or MSP pays and marks up
- • Cost scales with each client's employee count — bigger clients cost more
- • Annual saving available with 12-month billing (≈ 17% off)
Cyberday public pricing (cyberday.ai/pricing): €250 (<20 emp), €320 (20-49), €450 (50-99), €680 (100-199), €990 (200-499), €1,350 (500-999), €1,990 (1,000-2,999), custom above.
ECP — same 50-client portfolio (Studio tier, mostly S-size clients)
- • MSP base (Studio, 50-99 clients): €999 / month
- • Per-client (S-size, < 1,000 entities): 50 × €75 = €3,750 / month
- • Total platform cost to MSP: €4,749 / month
- • MSP sets own client price (suggested €100-400 / month, scaled to client size)
- • At €250 / client: MSP revenue €12,500 / mo, margin €7,751 / mo (~€93K / year, 62%)
ECP's per-client cost scales with client size (S €75 / M €250 / L €750), not with the MSP's size. The brackets are uniform across every tier — what differs is the monthly base. AI assistance and integrations are included on Practice and up; Starter is intentionally minimalist (templates + CSV import + audit output).
Framework coverage
Cyberday's pitch is breadth — 70+ frameworks out of the box. ECP's pitch is depth on one framework — CyFun, natively, with CCB alignment. Whether breadth or depth matters more depends on what your clients actually need to be audited against.
| Framework | Cyberday | ECP |
|---|---|---|
| CyFun (CCB) — Small | Not advertised as native | Native, YAML-implemented |
| CyFun (CCB) — Basic | Not advertised as native | Native, YAML-implemented |
| CyFun (CCB) — Important / Essential | Not advertised as native | YAML implemented, CCB verification pending |
| ISO 27001:2022 | Full coverage including Annex A | Planned, not yet shipped |
| NIS2 directive (general) | Pre-filled plan, mapped to ISO 27001 | Via CyFun (CCB's official NIS2 path in Belgium) |
| NIST CSF 2.0 | Included in 70+ library | CyFun 2025 is aligned with NIST CSF 2.0 |
| GDPR / data privacy | Included | Not a primary focus — use dedicated GDPR tools |
| SOC 2 / HIPAA / Cyber Essentials | Included in 70+ library | Not supported — out of scope for Belgian NIS2 |
Sources: cyberday.ai use-cases + frameworks pages; ECP roadmap.md. If your audit is against a framework not listed above, verify directly with each vendor.
Common questions
Can I migrate from Cyberday to ECP, or the other way?
Both directions are workable but not one-click. From ECP: the signed CAB bundle (`.ecpbundle.zip`) exports every wiki page, evidence artifact, assessment, and register row in a structured ZIP. Into ECP from Cyberday: bring your policies and evidence as files; the wiki import accepts Markdown and common document formats. The framework mapping is usually the larger task — Cyberday's ISO 27001 structure does not one-to-one match CyFun, so expect content rework per client.
If my client needs ISO 27001 and CyFun, should I use both?
Possibly, yes. CyFun 2025 is aligned with NIST CSF 2.0 and overlaps significantly with ISO 27001, but they are not interchangeable — an ISO 27001 auditor will not accept CyFun evidence without mapping. If the client needs certified ISO 27001 today, Cyberday handles that natively; ECP prepares CyFun audit-readiness in parallel. Not ideal economically, but sometimes the right answer.
Why is ECP so much cheaper than Cyberday?
Different business models, not different value tiers. Cyberday is sold direct to the end-client organization — their pricing reflects the full go-to-market cost including sales, onboarding, and support for every buyer. ECP is sold to MSPs, who then resell to their clients — the MSP absorbs onboarding and first-line support, which is why per-client costs are structured as size-tiered brackets (S/M/L) on top of an MSP-scale base. The MSP captures the gap between our cost and their retail.
Can I white-label Cyberday the way I can white-label ECP?
Cyberday is sold as a named SaaS product. We do not see public white-label or partner-branding features advertised. ECP is built for MSP white-labeling from day one: partner-managed brand color, logo on generated PDFs and reports, per-client branding overrides, and MSP-level client management. If white-label is a hard requirement for your delivery model, this is a structural difference.
Package CyFun audit-readiness for your clients
If you are a Belgian MSP and our two-axis tiered model (your scale × client size, with AI + integrations on Practice and up) fits your portfolio better than per-org SaaS tiers, let's talk.