ArticlesArtificial intelligence in Romania: an essential support for companies and people in reaching their potential
ArticlesThe 3% bonus for paying taxes on time – from clear application rules to illegally imposed limitations
ArticlesUnder pressure from rising costs, healthcare systems must shift to prevention with the help of technology
ArticlesPwC Voice of Consumer: Consumers seek a balance between health and affordability when purchasing food products
Articles2025 global economic update and mid-year outlook
InterviewsThe implications of change
InterviewsRevolutionizing urban development: exploring Veolia Romania’s GeoExchange innovation
InterviewsBUILDING A GREENER FUTURE: ALUMIL’S STRATEGIC GROWTH, PRODUCT INNOVATION, AND SUSTAINABILITY COMMITMENT
InterviewsHOW CAN WE MAXIMIZE OUR HEALTH?
InterviewsTHE NEW ROMBAT IDENTITY - GOING FURTHER - BUILT ON TRADITION, INSPIRING THE FUTURE
NewsAutoWallis expands its portfolio in Central and Eastern Europe with the NIO brand, the premium electric car brand
NewsMemorandum of Understanding between Intracom Telecom and CERTH
NewsOver 2,500 children, adults and people with disabilities ran at the second edition of the Run for Heroes charity cross-country race – fueled by…
NewsAlumil at nZEB Expo 2025: sustainable solutions for windows, doors and facades
NewsDISCOVERY SPORT BECOMES MORE DYNAMIC, MORE LUXURIOUS AND MORE PERSONALIZED WITH METROPOLITAN EDITION AND LANDMARK EDITION VERSIONS

NIS Directive 2: criteria for assessing companies' compliance and legal obligations in the coming period

14 May 2025

Opinion material by Silvia Axinescu, Senior Associate Manager, and Corina Damaschin, Senior Associate, Reff & Asociatii | Deloitte Legal

On December 31, 2024, Emergency Ordinance no. 155/2024 (OUG 155/2024) entered into force, establishing the legislative framework for the cybersecurity of networks and information systems in Romania. The regulatory act transposes Directive (EU) 2022/2555, known as the NIS Directive (Network and Information Security Directive) 2, and imposes compliance requirements for entities operating in sectors considered critical or important for the functioning of society and the economy. The competent authority for the application and monitoring of the provisions of the ordinance is the National Directorate for Cyber Security (DNSC).

For more information, please see the Romanian version of the article, here.

Authors

REFF & ASOCIATII | DELOITTE LEGAL

See all published materials

Tags : NIS Directive 2 , companies' compliance , OUG 155/2024 , cybersecurity , information systems , Network and Information Security Directive , compliance , economy , DNSC