The NIS2 Directive, which aims to establish a high common level of cybersecurity across the EU, is being transposed at varying speeds and approaches by member states.
So far, 14 of the 27 EU countries have adopted national legislation to implement NIS2.
Cullen International’s assessment of 18 member states also reveals differences in how key aspects of the directive are being applied. For example, some countries (e.g. the Czech Republic and Spain) have expanded the scope of sectors covered by NIS2.
Additionally, the research identifies national authorities responsible for oversight, cybersecurity incident response, and coordination within the digital sectors.
For more information on the benchmark and Cullen International's complete NIS2 coverage, please click on “Access the full content” - or on “Request Access”, in case you are not subscribed to our European Digital Economy service.
more news
27 August 25
5G developments and other regulatory news in the Middle East and North Africa
Our latest MENA Telecoms Update details the most significant regulatory developments taking place in the region between 30 April and 11 August 2025.
14 August 25
Fighting online piracy in Brazil
The latest edition of Cullen International's Fighting Online Piracy benchmark shows that Brazil’s audiovisual sector regulator Ancine and its telecoms regulator Anatel have agreed in writing to collaborate in the fight against the online piracy of media content.
11 August 25
Getting tough on TV advertising in LATAM
The new edition of Cullen International’s benchmark on TV advertising restrictions to protect public health or minors notes developments in Argentina and Brazil.