GDPR & Cybersecurity

Although Belgium's NIS2 law has been in effect since Oct. 18, 2024, April 18, 2026 represents a crucial milestone for many organizations. After all, by that date it is no longer enough to partially implement cybersecurity measures. Organizations must be able to effectively demonstrate compliance.

Information is one of your company's most important assets today. At the same time, cyber threats and data breaches are increasing, customers and partners expect more and more, and legislation is being tightened. ISO 27001 provides a structured and internationally recognized framework to meet these challenges.

The cyber attack at Antwerp's AZ Monica hospital was a harsh wake-up call. IT systems were disabled, scheduled care had to be postponed and employees had to revert to paper procedures. Any organization that relies on digital systems faces similar risks.

From 17 January 2025, the European Digital Operational Resilience Act (DORA) will come into force for the financial sector. But what exactly is DORA and what does it mean for your organisation? And how does DORA relate to NIS2 legislation?

The new European directive NIS2 is the successor to NIS (Network and Information Security Directive) and will come into force on 17 October 2024. In this article, we make a list of the important elements to take into account when implementing NIS2.

We take a closer look at some of the measures and procedures that the European NIS2 Directive requires as a minimum to reduce your organisation's vulnerability and increase its resilience to cyber-attacks (and avoid penalties).

In December 2022, the European Parliament adopted the NIS2 Directive on the security of network and information systems to ensure a higher level of cybersecurity in the EU. It is now up to Belgium to introduce new legislation to replace the existing NIS law by 17 October 2024.

Cryptocurrencies remain a hot topic. However, transparency and the regulation of cryptocurrencies remain thorny issues today. The following is a brief update on the legal framework for the automatic exchange of information between countries and the regulations to combat money laundering and fraud.

Cyber criminals are active, even during the corona crisis. In recent weeks, an increasing number of phishing emails have been sent around the world. These often exploit the coronavirus and other topical events. But how can you recognise a phishing email?

On 25 May 2018, the General Data Protection Regulation, commonly known as GDPR, was launched. With this handy checklist, you can quickly find out whether your company is already GDPR-compliant at the moment or not..

On the 25th of May it will be one year to the day since the dreaded GDPR legislation took effect. The panic that took hold last year is nowhere to be seen today. So has nothing actually happened over the past year?

Or maybe not? This could have been in an email from finance@vlt.be (instead of finance@vdl.be). And if you had not paid attention, all your payments to us would have gone to the bank account of a fraudster.

25 May 2018 is already about three months behind us. So, it looks like it is time to evaluate whether the dreaded GDPR fines have actually become a reality. Or can we sleep easy for a bit longer? And what about our neighbouring countries? Time for a look back.