info@edpo.com
NIS 2 Representative
EDPO provides high-quality representative services pursuant to Article 26 (3) of the Network and Information Security Directive (NIS 2)
The NIS 2 Directive, which applies as from 18 October 2024, is a cybersecurity directive adopted by the European Union to strengthen the security and resilience of critical infrastructure and digital services across EU Member States. It builds on the original NIS Directive of 2016, expanding its scope to cover more sectors, while introducing stricter security requirements. NIS 2 aims to improve incident response, risk management, and collaboration among EU countries to better address evolving cyber threats. Organizations that fall under its scope must implement robust cybersecurity measures and report incidents more promptly. In addition, certain entities that are not established in the EU have an obligation to designate a representative in one of the Member States where they provide services.
Non-compliance with NIS 2 may result in fines and administrative measures. It is crucial for non-EU companies that fall under the scope of NIS 2 to comply with these new requirements in order to avoid any legal or financial consequences.
Are you interested in appointing EDPO as your Representative for the NIS 2 Directive?
Sign-up using the form below or contact us!
Do you need to appoint a NIS 2 Representative in the EU?
You need to appoint a NIS 2 Representative if:
– You are not established in the EU; and
– You offer services within the EU; and
– You are one of the following types of entities:
– DNS service provider *
– TLD name registry *
– Entity providing domain name registration services
– Cloud copmputing service provider
– Data Centre Service provider
– Content Delivery network provider
– Managed service provider
– Managed security service provider
– Provider of online marketplaces
– Online search engine
– Social networking services platform
– You have more than 50 employees and an annual turnover and/or an annual balance sheet total exceeding €10 million
*These types of entities fall under the scope of NIS 2 regardless of their size
OUR ADDED VALUE
Strategic location
We act on your behalf in Belgium for NIS 2 purposes. EDPO‘s headquarters are based in Brussels, the EU’s capital, and are therefore close to EU institutions decision-makers, and influencers
We are ISO 27001 CertifiedWe are proud to have this top level security ISO 27001 certification, which is the latest, highest and most comprehensive in-depth security certification. It demonstrates our commitment to information security and confirms that we implemented industry-leading security practices to protect our client data.
All-in transparent and tailored fees
Our fees are flat and include all services. No added fees, and no surprises.
More than a messaging hub
We aren’t just a mailbox. Our services include the full handling of unlimited notifications to the authorities.
Recognized professionals
We work with a team of multilingual experts from various fields, covering all aspects of the Cyber Security field (legal, IT, security, risk management, etc.).
Extensive Insurance Coverage
We are adequately insured so that an incident with one client will not affect or jeopardize our services to other clients.
Compliant and ethical contract
Our contract clearly defines our mandate and specific obligations and it will not automatically terminate in the event that you experience an incident. We support you all the time and all the way.
Easy client onboarding
Our client onboarding process is simple, friendly, efficient and entirely digital. You can be compliant with Article 26(3) of the NIS 2 directive in just a few quick and easy steps.
Top-notch services in our DNA
We are passionate about client service. Really passionate. Our expertise, responsiveness and professionalism towards our clients, our clients and authorities are the backbone of our services. Meaningful client relationships are part of our core values.
Worldwide knowledge network
We work to stay at the forefront of cyber security news, case law and new developments. We provide relevant news on a daily basis and share a weekly newsletter (register here). We collect and share opinions and ideas with clients.
Frequently Asked Questions
What is the role of the NIS 2 Representative?
The NIS 2 Representative acts on behalf of non-EU entities that fall under the scope of the NIS 2 Directive, serving as the main point of contact for EU authorities and Computer Security Incident Response Teams (“CSIRTs”). The Representative must be officially appointed through a written mandate and performs its tasks pursuant to such mandate, including incident reporting.
In which country should the NIS 2 Representative be appointed?
The NIS 2 Representative must only be appointed in one single Member State, which can be any Member State in which the entity provides its services.
What are the penalties for non-compliance with NIS 2?
Non-compliance with the NIS 2 Directive can lead to significant penalties. Member States are required to establish effective, proportionate, and dissuasive sanctions for breaches of the Directive. Penalties may include fines (up to €10,000,000 or 2% of global annual turnover for entities defined as “essential” and €7,000,000 or 1.4% of global turnover for entities defined as “important”), suspension of operations, or other enforcement actions determined by national authorities.