Digital Policy Alert logo

European Union: EU Directive on the resilience of critical entities

Progress

Current status
in grace period
18 Oct 2024 in force
16 Jan 2023 in grace period
08 Dec 2022 adopted
22 Nov 2022 under deliberation
16 Dec 2020 under deliberation

Scope

Implementers
Austria
Belgium
Bulgaria
Croatia
Cyprus
Czechia
Denmark
Estonia
Finland
France
Germany
Greece
Hungary
Ireland
Italy
Latvia
Lithuania
Luxembourg
Malta
Netherlands
Poland
Portugal
Romania
Slovakia
Slovenia
Spain
Sweden
Policy Area
Data governance
Policy Instrument
Cybersecurity regulation
Regulated Economic Activity
infrastructure provider: internet and telecom services
infrastructure provider: cloud computing, storage and databases
infrastructure provider: network hardware and equipment
infrastructure provider: other
Government Branch
executive
legislature
Government Body
central government
parliament
Implementation Level
supranational

Timeline of events

18 Oct 2024
in force

Implemented Directive on the resilience of critical entities

On 18 October 2024, the Directive on the resilience of critical entities repealing Council Directive 114 of 2008 is implemented. The Member States were required to transpose the Directive by 17 October 2024. Under the Directive, Member States were r…

Source
Event type law
Action type implementation
Government branch executive
Government body central government
16 Jan 2023
in grace period

Entry into force with grace period of Directive on the resilience of critical entities

On 16 January 2023, the Directive on the resilience of critical entities entered into force with a grace period twenty days after its publication in the Official Journal of the European Union. Under the Directive, Member States are required to ident…

Source
Event type law
Action type in force with grace period
Government branch executive
Government body central government
08 Dec 2022
adopted

Adopted Directive on the resilience of critical entities by the Council of European Union

On 8 December 2022, the Council of the European Union adopted the Directive on the resilience of critical entities repealing Council Directive 114 of 2008. Under the Directive, Member States are required to identify public and private entities belon…

Source
Event type law
Action type adoption
Government branch executive
Government body central government
22 Nov 2022
under deliberation

Passed Directive on the resilience of critical entities by European Parliament

On 22 November 2022, the European Parliament passed the Directive on the resilience of critical entities repealing Council Directive 114 of 2008. Under the Directive, Member States are required to identify public and private entities belonging to on…

Source
Event type law
Action type passage
Government branch legislature
Government body parliament
16 Dec 2020
under deliberation

Introduced European Commission Proposal for Directive on the resilience of critical entities

On 16 December 2020, the European Commission introduced a proposal for a Directive on the resilience of critical entities. The Directive would compel Member States to ensure the cybersecurity resilience of essential services through the identificati…

Source
Event type law
Action type introduction
Government branch executive
Government body central government