Regulatory Compliance

AI-driven eDiscovery growth risks financial instability amid cybersecurity investment shift, EU warns

Sunday, 21 December 2025 8:27PM UTC

As the legal data services sector accelerates AI adoption, industry and EU reports highlight mounting financial and cybersecurity challenges, urging strategic investments in governance and workforce development to sustain technological gains.

The legal data services sector has moved decisively from exploration to execution, but its rush to scale AI-first capabilities is colliding with persistent gaps in financial discipline and cybersecurity prioritisation, according to industry and European agency analyses released in 2025. According to the 2H 2025 eDiscovery Business Confidence Survey by ComplexDiscovery OÜ and EDRM, a majority of surveyed leaders now rate business conditions as "good" and 64.06% report they are actively integrating and deploying Large Language Models (LLMs). The survey, conducted between 30 September and 15 November 2025, attributes adoption primarily to "improved service and product delivery" rather than immediate cost savings. ^[1]

Yet that optimism carries a material caveat: profitability and cash-flow visibility are under pressure. The ComplexDiscovery survey found a divergence between revenue expectations and profit forecasts , more respondents expect flat or modest revenue lifts while a larger share forecast flat or falling profits , and a worrying proportion of leaders admitted they do not know critical operational metrics such as Days Sales Outstanding (DSO). ComplexDiscovery warns this opacity risks a “liquidity crunch” as firms front-load investment in expensive AI infrastructure without matching billing cadence or revised pricing models. ^[1]

Those operational and financial tensions are mirrored by an industry-wide shift in cybersecurity investment priorities documented by the European Union Agency for Cybersecurity (ENISA). ENISA's 2025 NIS Investments report shows organisations increasingly prioritise technology and services over personnel, a movement driven by persistent talent shortages and the compliance demands of NIS2. The agency found 76% of organisations report difficulties hiring cybersecurity professionals and 71% struggle to retain them, pushing budgets toward tooling, managed services and external expertise. ^[2]^[3]

The juxtaposition of these findings exposes a dual risk for eDiscovery vendors and their clients: accelerated AI deployment without equivalent investment in defensive controls. ComplexDiscovery's results highlight accuracy and hallucination risk as the single largest barrier to LLM success, while ENISA cautions that shifting spend away from people can exacerbate operational fragility if governance, skills development and supplier security are not reinforced. Taken together, the reports argue that technology gains will be ephemeral unless paired with stronger governance, quality controls and workforce strategies. ^[1]^[2]

ENISA further emphasises that NIS2 compliance is a primary driver of recent investment increases but that implementation remains challenging for small and medium enterprises. The agency's Advisory Group and Skills Panel outputs recommend an EU-wide Cybersecurity Skills Academy, sector-specific capacity building and a horizontal framework for ICT supply-chain security to address those shortfalls. Those recommendations echo the needs identified in the eDiscovery survey for elevated reviewer expertise and defensible quality-control workflows around AI outputs. ^[5]^[6]^[1]

The structural market context amplifies the stakes. ComplexDiscovery projects that AI-driven efficiencies are already shifting task and spending mixes across eDiscovery , with review's share of spend declining as collection and processing grow , a dynamic that will require new pricing approaches and upstream information governance interventions to control downstream costs. ENISA's NIS360 work also stresses the importance of cross-sector collaboration and community-building to raise cyber hygiene and resilience, framing governance and workforce development as complements to technical investment. ^[1]^[4]

For commercial leaders the practical prescription is straightforward: reconcile aggressive AI adoption with sharper financial controls and explicit security input at procurement and deployment stages. ComplexDiscovery recommends real-time dashboards linking technical milestones to invoicing to close DSO blind spots; ENISA urges strategic prioritisation of workforce development and supplier risk management to prevent technology-led expansion from widening an organisation's attack surface. Both sets of authors argue that the winners will be those who treat governance and people as strategic investments rather than residual line items. ^[1]^[2]^[5]

Finally, the geographic and regulatory environments matter. The ComplexDiscovery survey is heavily U.S.-centric (90.63% of respondents operate primarily in North America), while ENISA's findings and recommendations are EU-focused and explicitly tied to NIS2 enforcement and EU-wide workforce initiatives. Firms operating across jurisdictions must therefore navigate differing compliance drivers and workforce realities: global AI scale‑up presents opportunity, but regulatory complexity and regional skills shortages require tailored governance and investment strategies. ^[1]^[2]

##Reference Map:

^[1] (ComplexDiscovery OÜ and EDRM - 2H 2025 eDiscovery Business Confidence Survey) - Paragraph 1, Paragraph 2, Paragraph 4, Paragraph 6, Paragraph 7, Paragraph 8, Paragraph 9
^[2] (ENISA - NIS Investments 2025) - Paragraph 3, Paragraph 4, Paragraph 7, Paragraph 8, Paragraph 9
^[3] (ENISA - What's driving cybersecurity investments) - Paragraph 3
^[4] (ENISA - NIS360 2024 report) - Paragraph 6
^[5] (ENISA Advisory Group opinion paper on NIS2 post-implementation) - Paragraph 5, Paragraph 7
^[6] (ENISA Cybersecurity Skills Panel - Expert Perspectives) - Paragraph 5

Source: Noah Wire Services

More on this

https://complexdiscovery.com/enisa-2025-nis-investments-report-technology-prioritized-as-cyber-talent-pools-contract/ - Please view link - unable to able to access data
https://www.enisa.europa.eu/publications/nis-investments-2025 - ENISA's 2025 NIS Investments report reveals a shift in cybersecurity investments from personnel to technology and services, driven by persistent talent shortages and the need for NIS2 compliance. The report highlights challenges in attracting and retaining skilled professionals, with 76% of organizations facing difficulties in hiring and 71% in retaining cybersecurity staff. Compliance with NIS2 is identified as a primary driver for increased investments, though implementation challenges remain, particularly for SMEs. The report underscores the need for enhanced collaboration and strategic prioritization to strengthen cybersecurity resilience across sectors.
https://www.enisa.europa.eu/news/whats-driving-cybersecurity-investments-and-where-lie-the-challenges - ENISA's 2025 NIS Investments report highlights a significant shift in cybersecurity investments from personnel to technology and services, driven by ongoing talent shortages and the imperative of NIS2 compliance. The report reveals that 76% of organizations face challenges in hiring suitable cybersecurity professionals, and 71% struggle with retention. Compliance with NIS2 is cited as a primary investment driver, though implementation poses challenges, especially for SMEs. The findings emphasize the need for strategic prioritization and enhanced collaboration to bolster cybersecurity resilience across sectors.
https://www.enisa.europa.eu/news/enisa-nis360-2024-report - ENISA's NIS360 2024 report assesses the cybersecurity maturity and criticality of sectors under the NIS2 Directive, providing insights to aid EU and member state authorities in identifying improvement areas and tracking sector progress. The report emphasizes the importance of strengthening collaboration within and between sectors through community-building events and cooperation at sector, national, and EU levels. It also highlights the need for a unified approach to raising cybersecurity awareness and cyber hygiene among professionals and citizens.
https://www.enisa.europa.eu/sites/default/files/2025-07/AG%20opinion%20paper%20on%20NIS2%20Post-Implementation_1.pdf - ENISA's Advisory Group opinion paper on NIS2 post-implementation outlines recommendations to enhance cybersecurity resilience across the EU. Key suggestions include strengthening the EU cyber workforce through the Cybersecurity Skills Academy, addressing the cybersecurity of the EU’s ICT supply chain with a horizontal policy framework, and promoting a unified approach to raising cybersecurity awareness and cyber hygiene among professionals and citizens. The paper also emphasizes the importance of sector-specific improvements to enhance the maturity of NIS sectors.
https://www.enisa.europa.eu/sites/default/files/2025-10/Cybersecurity%20Skills%20Panel%20-%20Expert%20Perspectives.pdf - ENISA's 2024 State of Cybersecurity in the Union Panel Series discusses the challenges organizations face in hiring qualified cybersecurity professionals, with 47% of surveyed organizations reporting difficulties. The report recommends implementing the EU Cybersecurity Skills Academy as a central hub for workforce development, establishing a common EU approach to cybersecurity training, and developing a coordinated EU approach to stakeholder involvement to address the cybersecurity skills gap.

Noah Fact Check Pro

The draft above was created using the information available at the time the story first emerged. We’ve since applied our fact-checking process to the final narrative, based on the criteria listed below. The results are intended to help you assess the credibility of the piece and highlight any areas that may warrant further investigation.

Freshness check

Score: 10

Notes: The narrative is based on the ENISA 2025 NIS Investments Report, published on 8 December 2025. ([enisa.europa.eu](https://www.enisa.europa.eu/publications/nis-investments-2025?utm_source=openai)) This is the earliest known publication date for this content, indicating high freshness. The report is also referenced in a ComplexDiscovery article dated 21 December 2025, confirming its recent release.

Quotes check

Score: 10

Notes: The narrative includes direct quotes from the ENISA 2025 NIS Investments Report. These quotes are unique to the report and do not appear in earlier publications, indicating originality. ([enisa.europa.eu](https://www.enisa.europa.eu/publications/nis-investments-2025?utm_source=openai))

Source reliability

Score: 10

Notes: The narrative is based on the ENISA 2025 NIS Investments Report, published by the European Union Agency for Cybersecurity (ENISA). ENISA is a reputable organisation responsible for enhancing cybersecurity across Europe, lending high credibility to the report. ([enisa.europa.eu](https://www.enisa.europa.eu/publications/nis-investments-2025?utm_source=openai))

Plausibility check

Score: 10

Notes: The claims in the narrative align with the findings of the ENISA 2025 NIS Investments Report, which indicates a shift in cybersecurity investments from personnel to technology and services due to talent shortages. This is corroborated by the report's publication on 8 December 2025. ([enisa.europa.eu](https://www.enisa.europa.eu/publications/nis-investments-2025?utm_source=openai))

Overall assessment

Verdict (FAIL, OPEN, PASS): PASS

Confidence (LOW, MEDIUM, HIGH): HIGH

Summary: The narrative is based on the ENISA 2025 NIS Investments Report, published on 8 December 2025, indicating high freshness. The quotes are unique to the report, and the source is a reputable organisation, ENISA. The claims are plausible and supported by the report's findings. Therefore, the narrative passes the fact-check with high confidence.

AI
eDiscovery
Cybersecurity
Regulation
Financial Stability