European Union: European Commission submitted Proposal for a Regulation on the European Union Agency for Cybersecurity (ENISA), the European cybersecurity certification framework, and ICT supply chain security (The Cybersecurity Act 2) including cybersecurity regulation

European Commission submitted Proposal for a Regulation on the European Union Agency for Cybersecurity (ENISA), the European cybersecurity certification framework, and ICT supply chain security (The Cybersecurity Act 2) including cybersecurity regulation

On 20 January 2026, the European Commission submitted the Proposal for a Regulation of the European Parliament and of the Council on the European Union Agency for Cybersecurity (ENISA), the European cybersecurity certification framework, and ICT sup…

Scope

Policy Area

Data governance

Policy Instrument

Cybersecurity regulation

Regulated Economic Activity

cross-cutting

Implementation Level

supranational

Government Branch

executive

Government Body

central government

Complete timeline of this policy change

Hide details

2026-01-20

under deliberation

On 20 January 2026, the European Commission submitted the Proposal for a Regulation of the European…

2026-03-18

under deliberation

On 18 March 2026, the European Data Protection Board (EDPB) and the European Data Protection Superv…

Description

European Commission submitted Proposal for a Regulation on the European Union Agency for Cybersecurity (ENISA), the European cybersecurity certification framework, and ICT supply chain security (The Cybersecurity Act 2) including cybersecurity regulation

Scope

Complete timeline of this policy change