Continue reading on DataGuidance with:
Free Member
Limited ArticlesCreate an account to continue accessing select articles, resources, and guidance notes.
Already have an account? Log in
Create an account
Join our community for free to access exclusive whitepapers, reports, and regulatory information.
Belgium: CCB reminds organizations of their obligations under NIS 2
On October 18, 2024, the Centre for Cybersecurity Belgium (CCB) issued a press release reminding organizations of their obligations under the Directive (EU) 2022/2555 on Security of Network and Information Systems (NIS 2 Directive).
The CCB noted that the NIS 2 Directive applies to entities established in Belgium that provide at least one of the services listed in the annexes and that have at least 50 full-time employees or an annual turnover (or annual balance sheet total) of more than €10 million.
Data breach notifications
The CCB highlighted that from October 18, 2024, covered organizations must report significant incidents to the CCB within 24 hours, and further information should be provided within 72 hours, followed by a final report in 30 days.
Registration
The CCB further stated that covered organizations have until March 18, 2025, to register through a legal representative on the portal.
Certification
Furthermore, the CCB noted that essential entities must also undergo regular assessments based on the requirements of the CyberFundamentals or the ISO 27001 standard. The CCB recommended all organizations, regardless of being covered by the NIS 2 Directive, to utilize the CyberFundamentals in their cybersecurity.
You can read the press release here and access the portal here.
Send us your Feedback!
Please let us know what you think of DataGuidance! It will only take 60 seconds and help us make the site better for you.
