https://wiki.atlaws.eu/index.php?action=history&feed=atom&title=Translations%3ANetwork_and_Information_Security_Directive_%28NIS2-RL%29%2F3%2FenTranslations:Network and Information Security Directive (NIS2-RL)/3/en - Versionsgeschichte2026-05-02T01:00:18ZVersionsgeschichte dieser Seite in RI WikiMediaWiki 1.43.6https://wiki.atlaws.eu/index.php?title=Translations:Network_and_Information_Security_Directive_(NIS2-RL)/3/en&diff=3461&oldid=prevJhospes: Die Seite wurde neu angelegt: „{| class="wikitable" !Goals !Scope !Content<ref>https://www.nis.gv.at/nis-2-richtlinie.html</ref> !Synergy !Consequences |- |Development of cybersecurity capabilities (Recital 1 NIS2) |Annex I (high-criticality sectors) |Obligation for all MS to adopt national cybersecurity strategies (Art 7 NIS2) |Data protection management system |Essential entities: fines of at least EUR 10 million or 2% of global annual turnover |- |Achieving a high common level of cy…“2025-06-03T10:35:26Z<p>Die Seite wurde neu angelegt: „{| class="wikitable" !Goals !Scope !Content<ref>https://www.nis.gv.at/nis-2-richtlinie.html</ref> !Synergy !Consequences |- |Development of cybersecurity capabilities (Recital 1 NIS2) |Annex I (high-criticality sectors) |Obligation for all MS to adopt national cybersecurity strategies (Art 7 NIS2) |Data protection management system |Essential entities: fines of at least EUR 10 million or 2% of global annual turnover |- |Achieving a high common level of cy…“</p>
<p><b>Neue Seite</b></p><div>{| class="wikitable"<br />
!Goals<br />
!Scope<br />
!Content<ref>https://www.nis.gv.at/nis-2-richtlinie.html</ref><br />
!Synergy<br />
!Consequences<br />
|-<br />
|Development of cybersecurity capabilities (Recital 1 NIS2)<br />
|Annex I (high-criticality sectors)<br />
|Obligation for all MS to adopt national cybersecurity strategies (Art 7 NIS2)<br />
|Data protection management system<br />
|Essential entities: fines of at least EUR 10 million or 2% of global annual turnover<br />
|-<br />
|Achieving a high common level of cybersecurity (Art 1 NIS2)<br />
|Annex II (other critical sectors) if thresholds in Art 2(1) of the Annex to Recommendation 2003/361/EC are exceeded<br />
|Obligation for MS to define various responsibilities and enforcement duties (Art 31 et seq. NIS2)<br />
|Security of processing (Art 32 GDPR)<br />
|Important entities: maximum fine of at least EUR 7 million or 1.4% of global annual turnover, whichever is higher<br />
|-<br />
|Mitigating threats in key sectors (Recital 1 NIS2)<br />
|To be transposed by MS by 17 October 2024 (not yet done)<br />
|Obligations regarding cybersecurity risk management (Art 20 et seq. NIS2) and reporting (Art 23 NIS2)<br />
|Confidentiality clauses<br />
|Administrative orders and instructions. Suspension of activity also possible (Art 32 NIS2)<br />
|-<br />
| <br />
| <br />
|Provisions and obligations on sharing cybersecurity information (Art 29 et seq. NIS2)<br />
| <br />
|Management bodies can be held personally liable (Art 20 NIS2)<br />
|}</div>Jhospes