site.btaEuropean Commission Calls on Bulgaria, 22 More Member States to Fully Transpose Cybersecurity Legislation

The European Commission Thursday announced it is opening infringement procedures by sending a letter of formal notice to Bulgaria and 22 other EU Member States for failing to fully transpose the EU-wide legislation on cybersecurity.

EU countries had until October 17 to implement the rules concerning critical sectors such as public electronic communications services, ICT service management, digital services, wastewater and waste management, space, health, energy, transport, manufacturing of critical products, postal and courier services, and public administration. Full implementation of the legislation is key to further improving the resilience and incident response capacities of public and private entities operating in these critical sectors and the EU as a whole, the Commission said.

Besides Bulgaria, Austria, Czechia, Denmark, Estonia, Germany, Greece, Ireland,  Spain, France, Cyprus, Latvia, Luxembourg, Hungary, Malta, the Netherlands, Poland, Portugal, Romania, Slovenia, Slovakia, Finland and Sweden have two months to respond and to complete their transposition and notify their measures to the Commission. In the absence of a satisfactory response, the Commission may decide to issue a reasoned opinion.