Compliance Guide

NIS2 Directive Compliance Guide

Understanding the Network and Information Systems Security Directive for your business

What is NIS2?

The NIS2 Directive is the EU's updated legislation on cybersecurity, replacing the original NIS Directive. It came into effect in January 2023 and must be transposed into national law by October 2024.

Important Deadline

Organizations must comply with NIS2 requirements by October 17, 2024

Broader Scope

Covers more sectors and smaller entities

Stricter Requirements

Enhanced cybersecurity measures

Higher Penalties

Significant financial sanctions

Penalties for Non-Compliance

Essential Entities

Up to €10M

Or 2% of annual global turnover

• Energy, transport, banking, health
• Critical infrastructure providers
• Higher supervision requirements

Important Entities

Up to €7M

Or 1.4% of annual global turnover

• Digital services, manufacturing
• Medium and large enterprises
• Proportionate supervision