Welcome to Hogan Lovells’ The Data Chronicles, brought to you by the firm’s global Privacy and Cybersecurity practice. This multimedia series is dedicated to the ever-changing legal and regulatory developments in the world of data, privacy, and cybersecurity.

In this episode of The Data Chronicles, host Scott Loughlin is joined by Hogan Lovells counsel Dan Whitehead to dive into the evolving realm of cybersecurity regulation in the European Union (EU). Together, they explore the adoption of the Network and Information Security (NIS2) Directive, a cybersecurity framework set to impact a wide range of industries including tech, life sciences and other critical infrastructure provided both within and outside the EU. The discussion delves into the evolving nature of cybersecurity law, highlighting the implications on security governance, board-level oversight, and incident reporting, along with the GDPR-level fines for non-compliance. Listen as these regulatory changes are dissected and learn about how organizations are looking to comply with these new standards in practice.