{"id":3761,"date":"2024-04-08T12:32:00","date_gmt":"2024-04-08T12:32:00","guid":{"rendered":"https:\/\/cybrela.com\/?p=3761"},"modified":"2024-06-21T14:06:38","modified_gmt":"2024-06-21T14:06:38","slug":"will-you-be-affected-by-the-new-cybersecurity-act","status":"publish","type":"post","link":"https:\/\/cybrela.com\/en\/bude-na-vas-dopadat-novy-zakon-o-kyberbezpecnosti\/","title":{"rendered":"Will you be affected by the new Cybersecurity Act?"},"content":{"rendered":"<div data-elementor-type=\"wp-post\" data-elementor-id=\"3761\" class=\"elementor elementor-3761\" data-elementor-post-type=\"post\">\n\t\t\t\t<div class=\"elementor-element elementor-element-007114d e-flex e-con-boxed e-con e-parent\" data-id=\"007114d\" data-element_type=\"container\" data-e-type=\"container\" data-settings=\"{&quot;jet_parallax_layout_list&quot;:[]}\">\n\t\t\t\t\t<div class=\"e-con-inner\">\n\t\t\t\t<div class=\"elementor-element elementor-element-594fa09 elementor-widget elementor-widget-post-info\" data-id=\"594fa09\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"post-info.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<ul class=\"elementor-inline-items elementor-icon-list-items elementor-post-info\">\n\t\t\t\t\t\t\t\t<li class=\"elementor-icon-list-item elementor-repeater-item-5ef8cab elementor-inline-item\">\n\t\t\t\t\t\t\t\t\t\t<span class=\"elementor-icon-list-icon\">\n\t\t\t\t\t\t\t\t<i aria-hidden=\"true\" class=\"far fa-user-circle\"><\/i>\t\t\t\t\t\t\t<\/span>\n\t\t\t\t\t\t\t\t\t<span class=\"elementor-icon-list-text elementor-post-info__item elementor-post-info__item--type-custom\">\n\t\t\t\t\t\t\t\t\t\tKate\u0159ina Kub\u00edkov\u00e1\t\t\t\t\t<\/span>\n\t\t\t\t\t\t\t\t<\/li>\n\t\t\t\t<li class=\"elementor-icon-list-item elementor-repeater-item-dc0cb02 elementor-inline-item\">\n\t\t\t\t\t\t\t\t\t\t<span class=\"elementor-icon-list-icon\">\n\t\t\t\t\t\t\t\t<i aria-hidden=\"true\" class=\"far fa-user-circle\"><\/i>\t\t\t\t\t\t\t<\/span>\n\t\t\t\t\t\t\t\t\t<span class=\"elementor-icon-list-text elementor-post-info__item elementor-post-info__item--type-custom\">\n\t\t\t\t\t\t\t\t\t\tDavid Pol\u00e1ch\t\t\t\t\t<\/span>\n\t\t\t\t\t\t\t\t<\/li>\n\t\t\t\t<li class=\"elementor-icon-list-item elementor-repeater-item-28ccc89 elementor-inline-item\" itemprop=\"datePublished\">\n\t\t\t\t\t\t\t\t\t\t<span class=\"elementor-icon-list-icon\">\n\t\t\t\t\t\t\t\t<i aria-hidden=\"true\" class=\"fas fa-calendar\"><\/i>\t\t\t\t\t\t\t<\/span>\n\t\t\t\t\t\t\t\t\t<span class=\"elementor-icon-list-text elementor-post-info__item elementor-post-info__item--type-date\">\n\t\t\t\t\t\t\t\t\t\t<time>08. 04. 2024<\/time>\t\t\t\t\t<\/span>\n\t\t\t\t\t\t\t\t<\/li>\n\t\t\t\t<\/ul>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t<div class=\"elementor-element elementor-element-f15ee73 e-flex e-con-boxed e-con e-parent\" data-id=\"f15ee73\" data-element_type=\"container\" data-e-type=\"container\" data-settings=\"{&quot;jet_parallax_layout_list&quot;:[]}\">\n\t\t\t\t\t<div class=\"e-con-inner\">\n\t\t<div class=\"elementor-element elementor-element-d5420dd e-flex e-con-boxed e-con e-child\" data-id=\"d5420dd\" data-element_type=\"container\" data-e-type=\"container\" data-settings=\"{&quot;jet_parallax_layout_list&quot;:[]}\">\n\t\t\t\t\t<div class=\"e-con-inner\">\n\t\t\t\t<div class=\"elementor-element elementor-element-ad615e1 elementor-widget elementor-widget-text-editor\" data-id=\"ad615e1\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<h2><strong>The new law on cyber security is due to be effective at the beginning of next year 2025, and it enshrines in Czech law the obligations and rules required by the NIS Directive2.\u00a0<\/strong><\/h2>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-d35d50b elementor-widget elementor-widget-text-editor\" data-id=\"d35d50b\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p>In order to answer the question of whether it faces new obligations, an organisation needs to know whether it is a provider of a regulated service. The law specifies that in most cases an organisation must identify itself and then register with the National Cyber and Information Security Authority (N\u00daKIB).<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-8679f61 elementor-widget elementor-widget-text-editor\" data-id=\"8679f61\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p style=\"text-align: justify;\"><b><span lang=\"CS\">Who is the provider of the regulated service?<\/span><\/b><\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-2c82380 elementor-widget elementor-widget-text-editor\" data-id=\"2c82380\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p class=\"translation-block\">The Draft of the Act says that a regulated service provider <em>is a body or person providing one or more regulated services<\/em>. This relatively general definition often raises more questions than it answers. In general, therefore, a regulated service provider is an organisation that meets certain criteria, most commonly the <strong>size of undertaking<\/strong> criterion and <strong>carries out an activity that is designated as a regulated service.<\/strong><\/p>\n<p class=\"translation-block\"><strong>The Size Criterion<\/strong> of the organisation is based on a recommendation from the European Commission. To determine size, it is sufficient if either the number of employees <strong>or<\/strong> the financial indicator is met. The number of employees of an organisation includes not only the employees of the organisation under assessment but also, to a certain extent, the employees of so-called linked or partner enterprises. For example, a subsidiary in which the organisation has a 100 % shareholding is a related undertaking and all employees are added to the size of the organisation under assessment. An organisation is then a large enterprise if it has at least 250 employees, a medium-sized enterprise if it has between 50 and 249 employees, a small enterprise between 10 and 50 employees and a micro-enterprise below 10.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-a595147 elementor-blockquote--skin-boxed elementor-blockquote--align-center elementor-widget elementor-widget-blockquote\" data-id=\"a595147\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"blockquote.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<blockquote class=\"elementor-blockquote\">\n\t\t\t<p class=\"elementor-blockquote__content\">\n\t\t\t\tHowever, size is not the only criterion. An organisation can become a regulated service provider even if it provides a regulated service that imposes conditions other than the size just mentioned!\t\t\t<\/p>\n\t\t\t\t\t<\/blockquote>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-93f60d9 elementor-widget elementor-widget-text-editor\" data-id=\"93f60d9\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p style=\"text-align: justify;\"><b><strong>What are regulated services?<\/strong>\u00a0<\/b><\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-9cf00c6 elementor-widget elementor-widget-text-editor\" data-id=\"9cf00c6\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p class=\"translation-block\">The Cybersecurity Act states <em>that a regulated service is a service the disruption of which could have a significant impact on the security of important societal or economic activities and for the provision of which assets are used<\/em>.<\/p><p>The Decree on Regulated Services then lists 22 areas of regulated services - from energy to the space industry.  It then lists specific regulated services in each area, of which there are more than 100 in total. These are supposed to be the most important services that need increased protection in the area of cyber security. These include, for example, electricity generation, airport operations, the provision of a public communications network, the provision of cloud computing services or the provision of healthcare.<\/p><p class=\"translation-block\">If the criteria are met, the organisation will be a regulated service provider under the regime of higher or lower obligations. To help you self-determine, you can use our web application <a href=\"https:\/\/urci.se\/\" target=\"_blank\" rel=\"noopener\">urci.se<\/a> to find out for free if you are likely to be affected by NIS2 through the Cybersecurity Act and, if so, under which regime (note: please be aware that the Ur\u010di.se app considers only the Czech draft of the Cyber Security Act).<\/p><p>However, the Act also provides for several exceptions, where the National Cyber Security Authority (N\u00daKIB)  may determine by its decision that the provider is a regulated service provider without fulfilling the above criteria. For example, if the organisation carries out an activity the disruption of which may cause a serious interference with life affecting more than 125,000 persons, in particular a threat to life, health, property, internal or public order, security or the environment<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-7989a8b elementor-cta--skin-cover elementor-widget elementor-widget-call-to-action\" data-id=\"7989a8b\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"call-to-action.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-cta\">\n\t\t\t\t\t<div class=\"elementor-cta__bg-wrapper\">\n\t\t\t\t<div class=\"elementor-cta__bg elementor-bg\" style=\"background-image: url();\" role=\"img\" aria-label=\"\"><\/div>\n\t\t\t\t<div class=\"elementor-cta__bg-overlay\"><\/div>\n\t\t\t<\/div>\n\t\t\t\t\t\t\t<div class=\"elementor-cta__content\">\n\t\t\t\t\n\t\t\t\t\t\t\t\t\t<h2 class=\"elementor-cta__title elementor-cta__content-item elementor-content-item\">\n\t\t\t\t\t\tUnsure if you provide a regulated service?\t\t\t\t\t<\/h2>\n\t\t\t\t\n\t\t\t\t\t\t\t\t\t<div class=\"elementor-cta__description elementor-cta__content-item elementor-content-item\">\n\t\t\t\t\t\t<span style=\"text-align: justify;white-space: normal\">To save you work, we have developed an app where you can check for free whether or not you are likely to fall under the new regulation by answering simple questions. You will also find out what you may need to comply with and what the next steps you should take in this regard should be. \n(The app is in Czech language and applies to the Czech legistation).<\/span>\t\t\t\t\t<\/div>\n\t\t\t\t\n\t\t\t\t\t\t\t\t\t<div class=\"elementor-cta__button-wrapper elementor-cta__content-item elementor-content-item\">\n\t\t\t\t\t<a class=\"elementor-cta__button elementor-button elementor-size-\" href=\"https:\/\/urci.se\/\" target=\"_blank\" rel=\"noopener\">\n\t\t\t\t\t\tur\u010di.se\t\t\t\t\t<\/a>\n\t\t\t\t\t<\/div>\n\t\t\t\t\t\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-ebdee70 elementor-widget elementor-widget-text-editor\" data-id=\"ebdee70\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<h3><b><span lang=\"CS\">I'll probably be a regulated service provider, what next?<\/span><\/b><\/h3>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-4f3f721 elementor-widget elementor-widget-text-editor\" data-id=\"4f3f721\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p>The provider of a regulated service must report to the N\u00daKIB itself that it has fulfilled the criteria for identification of a regulated service. What now?<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-50959f0 elementor-widget elementor-widget-text-editor\" data-id=\"50959f0\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p><b>1) Registration<\/b><\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-fb00bf7 elementor-widget elementor-widget-text-editor\" data-id=\"fb00bf7\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p class=\"translation-block\">Under the Act, you now have <strong>30 days<\/strong> to register through the N\u00daKIB portal - this period starts from the moment you <strong>find out that you provide<\/strong> a regulated service. The Cybersecurity Act envisages an effective date of 18 October 2024, but whether it will make it through Parliament by then is now uncertain.<\/p><p class=\"translation-block\"><strong>What if I don't find out that I am providing a regulated service?<\/strong> The Draft of the Act also provides for this and sets a time limit of <strong>90 days<\/strong>, starting from the moment <strong>when the criteria are actually met<\/strong>. The registration period will end with whichever expires first. This is particularly applicable when an organization begins to provide a regulated service in the future, and is not simply linked to the effective date of the new cyber law.<\/p><p>For example, if you start providing a regulated service at the beginning of the month, but you don't yet know that you are a regulated service provider, the 90-day registration period begins. If you do not actually find out that you are providing a regulated service until 2 days before the end of that period, the 30 days will no longer run out because the period will expire on whichever day expires first, the 90th day. Similarly, if you know that you are a provider at the beginning of the month at the same time you are providing a regulated service, the time for registration will expire on the 30th day.<\/p><p class=\"translation-block\"><strong>What if I don't register? <\/strong>The law makes this an offence, and the provider of a regulated service will face a penalty. This is behaviour that demonstrates that an organisation is avoiding its cyber security obligations, and so can carry the highest possible fines. The levels of fines are based directly on the NIS2 Directive and are up to 250 milion CZK or up to 2% of net worldwide annual turnover (whichever is higher) for organisations subject to the higher regime and up to 175 milion CZK or 1.4% of net worldwide annual turnover (again, whichever is higher) for organisations in the lower regime.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-9b46b7a elementor-widget elementor-widget-text-editor\" data-id=\"9b46b7a\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p><strong>2) Entry in the register of regulated service providers<\/strong><\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-6306c9e elementor-widget elementor-widget-text-editor\" data-id=\"6306c9e\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p class=\"translation-block\">After the registration of a regulated service by an organisation, the N\u00daKIB automatically enters it into the register of regulated service providers and notifies the organisation of this entry. The obligations arising from the law towards the registered services must then be fulfilled by the organisation <strong>from the moment of delivery of the notification<\/strong> of the registration of the regulated service. However, security measures such as the establishment of security roles in a higher regime will occur at a later date (more on this below).<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-1496f9e elementor-widget elementor-widget-text-editor\" data-id=\"1496f9e\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p><b>3) Data reporting\u00a0<\/b><\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-8880963 elementor-widget elementor-widget-text-editor\" data-id=\"8880963\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p class=\"translation-block\">Within <strong>30 days<\/strong> of receiving written notice of registration, the organization must complete the contact and additional information required by the Act.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-389833f elementor-widget elementor-widget-text-editor\" data-id=\"389833f\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p class=\"MsoNormal\" style=\"text-align: justify;\"><strong>4) Compliance with security measures and incident reporting<\/strong><\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-80a7f31 elementor-widget elementor-widget-text-editor\" data-id=\"80a7f31\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<p class=\"translation-block\">The establishment and implementation of security measures for each regulated service and the obligation to report cybersecurity incidents must begin <strong>within 1 year<\/strong> of the date of <strong>delivery of written notice of the service's registration. <\/strong>.<\/p><p>Once the new Cybersecurity Act comes into force, organisations will then have to prepare mandatory documentation and appoint security roles according to the duty regime into which they fall.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-a15cb02 elementor-widget-divider--separator-type-pattern elementor-widget-divider--no-spacing elementor-widget-divider--view-line elementor-widget elementor-widget-divider\" data-id=\"a15cb02\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"divider.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-divider\" style=\"--divider-pattern-url: url(&quot;data:image\/svg+xml,%3Csvg xmlns=&#039;http:\/\/www.w3.org\/2000\/svg&#039; preserveAspectRatio=&#039;xMidYMid meet&#039; overflow=&#039;visible&#039; height=&#039;100%&#039; viewBox=&#039;0 0 126 26&#039; fill=&#039;black&#039; stroke=&#039;none&#039;%3E%3Cpath d=&#039;M3,10.2c2.6,0,2.6,2,2.6,3.2S4.4,16.5,3,16.5s-3-1.4-3-3.2S0.4,10.2,3,10.2z M18.8,10.2c1.7,0,3.2,1.4,3.2,3.2s-1.4,3.2-3.2,3.2c-1.7,0-3.2-1.4-3.2-3.2S17,10.2,18.8,10.2z M34.6,10.2c1.5,0,2.6,1.4,2.6,3.2s-0.5,3.2-1.9,3.2c-1.5,0-3.4-1.4-3.4-3.2S33.1,10.2,34.6,10.2z M50.5,10.2c1.7,0,3.2,1.4,3.2,3.2s-1.4,3.2-3.2,3.2c-1.7,0-3.3-0.9-3.3-2.6S48.7,10.2,50.5,10.2z M66.2,10.2c1.5,0,3.4,1.4,3.4,3.2s-1.9,3.2-3.4,3.2c-1.5,0-2.6-0.4-2.6-2.1S64.8,10.2,66.2,10.2z M82.2,10.2c1.7,0.8,2.6,1.4,2.6,3.2s-0.1,3.2-1.6,3.2c-1.5,0-3.7-1.4-3.7-3.2S80.5,9.4,82.2,10.2zM98.6,10.2c1.5,0,2.6,0.4,2.6,2.1s-1.2,4.2-2.6,4.2c-1.5,0-3.7-0.4-3.7-2.1S97.1,10.2,98.6,10.2z M113.4,10.2c1.2,0,2.2,0.9,2.2,3.2s-0.1,3.2-1.3,3.2s-3.1-1.4-3.1-3.2S112.2,10.2,113.4,10.2z&#039;\/%3E%3C\/svg%3E&quot;);\">\n\t\t\t<span class=\"elementor-divider-separator\">\n\t\t\t\t\t\t<\/span>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-a3d7df4 elementor-cta--skin-cover elementor-bg-transform elementor-bg-transform-zoom-in elementor-widget elementor-widget-call-to-action\" data-id=\"a3d7df4\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"call-to-action.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-cta\">\n\t\t\t\t\t<div class=\"elementor-cta__bg-wrapper\">\n\t\t\t\t<div class=\"elementor-cta__bg elementor-bg\" style=\"background-image: url();\" role=\"img\" aria-label=\"\"><\/div>\n\t\t\t\t<div class=\"elementor-cta__bg-overlay\"><\/div>\n\t\t\t<\/div>\n\t\t\t\t\t\t\t<div class=\"elementor-cta__content\">\n\t\t\t\t\n\t\t\t\t\t\t\t\t\t<h2 class=\"elementor-cta__title elementor-cta__content-item elementor-content-item\">\n\t\t\t\t\t\tGet ready\t\t\t\t\t<\/h2>\n\t\t\t\t\n\t\t\t\t\t\t\t\t\t<div class=\"elementor-cta__description elementor-cta__content-item elementor-content-item\">\n\t\t\t\t\t\tWe can help you with practical preparation of your company for the new cybersecurity legislation.\t\t\t\t\t<\/div>\n\t\t\t\t\n\t\t\t\t\t\t\t\t\t<div class=\"elementor-cta__button-wrapper elementor-cta__content-item elementor-content-item\">\n\t\t\t\t\t<a class=\"elementor-cta__button elementor-button elementor-size-\" href=\"https:\/\/cybrela.com\/en\/contact\/\" target=\"_blank\">\n\t\t\t\t\t\tContact us\t\t\t\t\t<\/a>\n\t\t\t\t\t<\/div>\n\t\t\t\t\t\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>","protected":false},"excerpt":{"rendered":"<p>The new Cybersecurity Act is due to come into force at the beginning of next year and enshrines in law the obligations required by the NIS2 Directive. <\/p>","protected":false},"author":2,"featured_media":4177,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[55,56],"tags":[45,46,57],"class_list":["post-3761","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-kyberbezpecnost","category-nis2","tag-informacni-bezpecnost","tag-kyberbezpecnost","tag-nis2"],"_links":{"self":[{"href":"https:\/\/cybrela.com\/en\/wp-json\/wp\/v2\/posts\/3761","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cybrela.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cybrela.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cybrela.com\/en\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/cybrela.com\/en\/wp-json\/wp\/v2\/comments?post=3761"}],"version-history":[{"count":37,"href":"https:\/\/cybrela.com\/en\/wp-json\/wp\/v2\/posts\/3761\/revisions"}],"predecessor-version":[{"id":4706,"href":"https:\/\/cybrela.com\/en\/wp-json\/wp\/v2\/posts\/3761\/revisions\/4706"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cybrela.com\/en\/wp-json\/wp\/v2\/media\/4177"}],"wp:attachment":[{"href":"https:\/\/cybrela.com\/en\/wp-json\/wp\/v2\/media?parent=3761"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cybrela.com\/en\/wp-json\/wp\/v2\/categories?post=3761"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cybrela.com\/en\/wp-json\/wp\/v2\/tags?post=3761"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}