Understanding Key EU Cybersecurity Legislative Acts NIS2, CER, and CRA

EU enacts NIS2, CER, and CRA to enhance cybersecurity. NIS2 updates previous directives, imposing cybersecurity mandates on essential entities, effective January 2023. CER targets physical resilience in 11 sectors, starting January 2023. CRA mandates cybersecurity standards for digital products; effective December 2024, main provisions in December 2027. Non-compliance can lead to hefty fines. Businesses advised to comply with these regulations.

https://www.twobirds.com/en/insights/2025/understanding-key-eu-cybersecurity-legislative-acts-nis2,-cer,-and-cra