The European Commission has started this Thursday infringement proceedings against 23 Member Statesamong them Spain, for not having transferred to their national legislation the common rules to increase the cybersecurity of companies and critical networks in the European Union.
This is a new European legislation that came into force in January 2023 and that governments had to include in their national regulations by October at the latest. Brussels warns that the “full application” of the new community rules is “key” to “continue improving the resilience and response capacity” of public and private entities in these critical sectors in the face of serious cybersecurity incidents.
The opening of a sanctioning file means starting a period of two months so that the authorities of the warned country take corrective measures and ensure compliance with the common rules.
The sending of a letter of summons It is the first step of a three-phase process that provides for a second stage of dialogue if the Member State requires more time to act (reasoned opinion) and which, ultimately, may end with a complaint before the Court of Justice of the Union European Court (CJEU) to fine the country for persisting in non-compliance.
The regulation in question covers entities of critical sectors such as public electronic communications services, ICT service management, digital services, wastewater and waste management, space, health, energy, transportation, critical product manufacturing, postal and shipping services. messaging and public administration.
Thus, it has specific categories that frame the companies that provide digital services such as cloud computing and data center service providers, online marketplaces, search engines or social media platforms.
#Brussels #files #charges #Spain #twenty #countries #reinforcing #cybersecurity #critical #sectors
