Regulation

EU Regulation on ENISA and Cyber Security Certification

Explanation of a new EU regulation on cyber security which became law in the UK in June 2019.

This was published under the 2016 to 2019 May Conservative government

Documents

EU regulation on ENISA and Cyber Security Certification - LEGISLATION

Details

This notice explains a new EU regulation on cyber security which will come into force in the UK in June 2019. This follows the UK’s Call for Views on the same regulation which closed February 2018.

The new ‘EU Regulation on ENISA and Cyber Security Certification’ aims to help improve the cyber security of EU member states. It does three things:

  • Sets out a new, strengthened role for ENISA, the EU’s cyber security agency
  • Sets out new rules on Information and Communication Technology and Cyber Security Certification
  • It also repeals an old EU regulation (EU) 526/2013.

The regulation was published by the European Union on 7 June 2019 and will become part of UK law 20 days later. Further details, including Brexit guidance, can be found in the notice attached at the top of this page.

You can read the full legislation here.

Updates to this page

Published 17 May 2019

Sign up for emails or print this page