Resources

NIS2 update: The Cybersecurity Act is almost through - here's what it means for you

News

NIS2 update: The Cybersecurity Act is almost through - here's what it means for you

Legislation

Information Security

NIS2

Heading 1

Heading 2

Heading 3

Heading 4

Heading 5

Heading 6

Lorem ipsum by sit amet, consectetur adipiscing elit, sed do eusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat. Dis aute irure door in reprehenderit in voluptate velit se cillum dolore eu fugiat nulla pariatur.

Block quote

Ordered list

Item 1
Item 2
Item 3

Unordered list

Item A
Item B
Item C

Text link

Bold text

Emphasis

^Superscript

_Subscript

It's almost official. The day before yesterday, on April 7, 2026, the House of Representatives voted in connection with the Cybersecurity Act (Cbw). This means we can almost be sure that the Dutch translation of the European NIS2 directive is actually coming. Perhaps this law has felt like a long way from your bed show to you so far, but after yesterday's vote, the foundation was laid.

Heading 1

Heading 2

Heading 3

Heading 4

Heading 5

Heading 6

Lorem ipsum by sit amet, consectetur adipiscing elit, sed do eusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat. Dis aute irure door in reprehenderit in voluptate velit se cillum dolore eu fugiat nulla pariatur.

Block quote

Ordered list

Item 1
Item 2
Item 3

Unordered list

Item A
Item B
Item C

Text link

Bold text

Emphasis

^Superscript

_Subscript

This article was last updated on

10.04.2026

Written by

Ruben

Renter

Marketing Specialist

1. Effective on July 1, 2026

The law is expected to be passed by a large majority. This shows that cybersecurity has long ceased to be a topic that lies only with the IT department; it is a priority for our entire country. The Senate still has to formally review the law, but the course is clear. It is expected that the law on July 1, 2026 officially commences.

2. First help, then enforcement

During yesterday's votes, a lot of attention was paid to how the law will work in practice. An important point is that the first year is dedicated to “educational supervision”.

What does that mean? The House of Representatives wants supervisors to mainly help and guide you in the first year. This is good news if you have good will, but you don't have everything in perfect order yet. Please note: this is not a vacation. Your duty of care starts from day one, so you must be demonstrably at work.

3. Extra support for SMEs

Many smaller companies are concerned about the red tape, especially when they deliver to vital sectors. Fortunately, it was decided yesterday that the government should come up with extra help. Think of handy tools for doing a scan yourself and clear guides especially for SMEs. This way, the rules remain manageable for everyone.

What does the schedule look like now?

Now that the House of Representatives has almost agreed, things can go quickly:

May/June 2026: The Senate reviews the law (the technical check).
June 2026: The Act is officially signed and published.
July 1, 2026: The law is expected to officially take effect.

Getting started

How fast the process will be will depend on politics. But at least the time to wait and see is now really over. Whether you fall under the law directly or indirectly through your customers: the rules for your risk management and reporting obligations will soon be laid down in law.

Our advice? Don't wait until July. Use the coming period to take a critical look at your current plans. How do you respond to incidents? How did you arrange contact with your suppliers? By taking small steps now, you will soon be well prepared. Need help? Then you've come to the right place!

‍