The EU's NIS2 Directive is a significant development in cyber security, bringing many more sectors into the scope of cyber security regulation and setting out incident notification obligations for in-scope entities, risk management requirements and significant enforcement measures.
The October 17 2024 deadline for NIS2 implementation has now passed, however many countries are late with their local implementations. Our international network of cybersecurity specialists has assessed the current status of transposition into local laws.
Download our status update here - updated as at 5 November 2025.
To help organisations understand the key differences and features of local law transposition we are releasing individual country updates in collaboration with local counsel. The first of those updates can be accessed below:
Don't miss a thing, subscribe today!
Stay up to date by subscribing to the latest Cyber Security insights from the experts at Fieldfisher.
Subscribe now