Since the new BSI Act came into force on December 6, 2025, the obligations of the NIS 2 Directive have been directly applicable. This means that many companies are now required to implement comprehensive IT security measures for the first time. At the same time, there is still uncertainty as to whether and to what extent they are actually affected.
In this seminar, we provide an overview of the new legal situation and the specific need for action in the area of compliance:
- Which industries and companies are covered by the scope of application, and how is the impact assessment carried out? What special features apply to groups of companies?
- What new legal obligations and measures must companies now implement, and what responsibilities do management have?
- How does registration with the BSI and the reporting of significant security incidents work in practice?
