Providers of public electronic communications networks or of publicly available electronic communications services should implement security by design and by default, and inform their service recipients of significant cyber threats and of measures they can take to protect the security of their devices and communications, for example by using specific types of software or encryption technologies.
NIS2 Recital EN
Recital 104
Related across sources
Guidance Guidelines 9/2022 on personal data breach notification under GDPR Guidance Guidelines 03/2022 on Deceptive design patterns in social media platform interfaces: how to recognise and avoid them Guidance Guidelines 2/2018 on derogations of Article 49 under Regulation 2016/679 Guidance Guidelines 07/2020 on the concepts of controller and processor in the GDPR Guidance Guidelines 02/2021 on virtual voice assistants Guidance Guidelines 1/2020 on processing personal data in the context of connected vehicles and mobility related applications