Assessment of
regulated services

according to the new
Cybersecurity Act

Many organizations are unsure whether the new Cybersecurity Act applies to them. It is not determined only by your size or industry, but also by the specific services you provide. Schedule a free consultation – we will assess which regulated services you actually provide and what you should focus on next.

Get a professional assessment

Why does it matter?

As of 1 November 2025, the new Cybersecurity Act is in force, applying to thousands of organizations in the Czech Republic. Often including those that are not yet aware of it. The law requires affected entities to notify the National Cyber and Information Security Agency (NÚKIB) that they fall under its scope and to report their so-called regulated services.

If an organization has not yet fulfilled this obligation, the situation should be addressed without unnecessary delay. Failure to comply with the notification requirement may be subject to inspections and can lead to sanctions.

There are many regulated services, all listed in the Decree on Regulated Services. The law divides them into 22 sectors (including energy, transport, manufacturing, food production, chemical industry, and others) and assesses not only the industry you operate in, but primarily the services you actually provide.

Whether the new Cybersecurity Act applies to your organization may also depend on activities that are only marginal and not central to your core business. For this reason, we recommend verifying the impact of the law on your organization with experienced professionals.

How does the cooperation work?

1. Free introductory consultation

During a 30-minute call, we will go through the basic details of your company (size, sector, services) to determine whether the Act applies to you.

2. Preparation of the assessment

Based on the information gathered, we will prepare a professional assessment to determine whether the law applies to you and which regulated services you provide.

3. Recommendations for next steps

We summarise the assessment results, explain what they mean for your organisation, and propose possible next steps.

Free introductory consultation

You can easily schedule the introductory consultation using the button below, at a time that suits you. The booked appointment is binding. 

Book a consultation

You can easily schedule your introductory consultation at a time that suits you.

The introductory consultation is completely free. The payment obligation arises only for the expert assessment prepared after the consultation. The booked time slot is binding.

Book a consultation

Latest articles

businessman-illustrating-cybersecurity-concepts-office-setting
7 lessons from 2025: how cybersecurity can go wrong
Real incidents from 2025 showed us that cybersecurity problems aren’t caused only by hackers. Sometimes, ordinary process and human failures are all it takes.

READ MORE

Customer care and support concept background faq question mark icon on a wooden cube closeup view laptop on a white office table photo
SOS: “We’re dealing with the new cyber law at the last minute” – 8 questions that actually help
Dealing with the new Cybersecurity Act at the last minute and looking for answers? We’ve answered the most common questions to help you understand the new obligations and figure out what actually applies to you.

READ MORE

How to report a regulated service: A step-by-step guide
Does the new Cybersecurity Act apply to you and you are trying to figure out how to report your regulated services? Here’s a step-by-step guide to help you meet this obligation.

READ MORE

All articles

Newsletter

Do you want to be sure that your company is protected from cyber threats and at the same time comply with the applicable legislation? Sign up for the newsletter and get practical advice from our legal consultants.

By clicking subscribe you consent to the processing of your personal data for marketing purposes.