Since the entry into force of Directive (EU) 2016/1148, significant progress has been made in increasing the Union’s level of cyber resilience. The review of that Directive has shown that it has served as a catalyst for the institutional and regulatory approach to cybersecurity in the Union, paving the way for a significant change in mind-set. That Directive has ensured the completion of national frameworks on the security of network and information systems by establishing national strategies on security of network and information systems and establishing national capabilities and by implementing regulatory measures covering essential infrastructures and entities identified by each Member State. Directive (EU) 2016/1148 has also contributed to cooperation at Union level through the establishment of the Cooperation Group and the network of national computer security incident response teams. Notwithstanding those achievements, the review of Directive (EU) 2016/1148 has revealed inherent shortcomings that prevent it from addressing effectively current and emerging cybersecurity challenges.
NIS2 Recital EN
Recital 2
Related across sources
Guidance Guidelines 04/2022 on the calculation of administrative fines under the GDPR Guidance Guidelines 07/2020 on the concepts of controller and processor in the GDPR News What Happened to the Risk-Based Approach to Data Transfers? Case Law Data Protection Commissioner v Facebook Ireland and Maximillian Schrems Guidance Guidelines 01/2021 News DeFine is a calculator for GDPR fines based on method of the EDPB