The law of April 26, 2024 establishing a framework for the cybersecurity of networks and information systems of general interest for public security (“NIS2 law”) was published on Friday the 17th of May in the Moniteur belge / Begisch Stadblad.  

This law transposes into Belgian law Directive (EU) 2022/2555 of the European Parliament and of the Council of 14 December 2022 (the “NIS2 directive”) on measures for a high common level of cybersecurity across the Union, amending Regulation (EU) No 910/2014 and Directive (EU) 2018/1972, and repealing Directive (EU) 2016/1148, and repeals the Law of 7 April 2019 establishing a framework for the security of networks and information systems of general interest for public security (the "NIS1 law").

The NIS2 law, which was coordinated by the Centre for Cybersecurity Belgium (CCB) and the Prime Minister's Cabinet, is an important step towards making Belgium one of the least cyber-vulnerable countries in the world. It will be complemented in the future by a royal decree, which is expected to be adopted in the coming weeks.

To find out what NIS2 is, whether it applies to you and what your obligations are under this new legal framework, please follow this link. For even more detailed information on the directive, please visit our page here.

This article is part of a series of articles published on the transposition of the NIS2 Directive in Belgium. The other articles can be accessed here.