Commission Welcomes Agreement to Make EU Online Environment More Secure

European Commission – Press releaseData-Privacy2

Brussels, 8 December 2015

Negotiators of the European Parliament, the Council and the Commission have agreed on the first EU-wide legislation on cybersecurity.
Information systems – computing resources such as networks and databases that enable essential services, businesses and the internet to function – are affected by an increasing number of security incidents. These incidents can have different origins, including technical failures, unintentional mistakes, natural disasters or malicious attacks. They could disrupt the supply of essential services we take for granted such as electricity, water, healthcare, or transport services.
It is a priority for the Commission to help prevent these incidents, and in case they occur, provide the most efficient response. This is why the Commission put forward in 2013 a proposal for a Directive to ensure a high common level of network and information security (NIS) in the EU. The European Parliament and the Luxembourg Presidency of the EU Council of Ministers last night reached an agreement on the rules which will:

  • improve cybersecurity capabilities in Member States
  • improve Member States’ cooperation on cybersecurity
  • require operators of essential services in the energy, transport, banking and healthcare sectors, and providers of key digital services like search engines and cloud computing, to take appropriate security measures and report incidents to the national authorities

Next steps
Following this political agreement, the text will have to be formally approved by the European Parliament and the Council. After that it will be published in the EU Official Journal and will officially enter into force. Member States will have 21 months to implement this Directive into their national laws and 6 months more to identify operators of essential services.
The Commission will build on this achievement to launch a public-Private partnership on cybersecurity in 2016,as announced in the Digital Single Market strategy in May.
[Read more…]