Cybersecurity SME
Check Compliance

Cybersecurity for the Public Administration Sector

Municipalities, regions, ministries and public bodies. 20-5000 employees.

Applicable Regulations

ACN Determination - NIS2 Security Measures

0 guides

Determina ACN 38565/2025

Soggetti essenziali e importanti registrati presso ACN. Authority: ACN - Agenzia per la Cybersicurezza Nazionale.

Penalties: Sanzioni previste dal D.Lgs. 138/2024
Authority: ACN - Agenzia per la Cybersicurezza Nazionale
Deadline: April 14, 2025
Explore guides

Act L of 2013 on Electronic Information Security of State and Local Government Bodies

0 guides

2013. evi L. torveny

Allami es onkormanyzati szervek, kozfeladatot ellato szervek. Authority: SZTFH (previously SZSZ / NISZ).

Penalties: Up to HUF 3,000,000
Authority: SZTFH (previously SZSZ / NISZ)
Deadline: July 1, 2013
Explore guides

AGID - Misure Minime Sicurezza ICT PA (Circolare 2/2017)

2 guides

AGID

National cybersecurity and compliance obligations for organizations within the scope of this regulation.

Penalties: National penalties apply
Authority: Agenzia per l'Italia Digitale
Deadline: April 18, 2017
Explore guides

AI Act

4 guides

EU Regulation 2024/1689

Regulation of artificial intelligence systems in the EU with a risk-based approach. Phased application: prohibited practices from Feb 2, 2025, GPAI obligations from Aug 2, 2025, high-risk systems from Aug 2, 2026

Penalties: Up to €35M or 7% of turnover (prohibited practices); €15M or 3% (other obligations); €7.5M or 1% (inaccurate information). SMEs: proportionate caps
Authority: AI Office (EU Commission) + AgID (Italy)
Deadline: August 2, 2026
Explore guides

Baseline Informatiebeveiliging Overheid

0 guides

BIO

All government entities (Rijksoverheid, municipalities, provinces, water boards). Authority: Ministerie van BZK.

Penalties: National penalties apply
Authority: Ministerie van BZK
Deadline: January 1, 2020
Explore guides

CAD - Codice Amministrazione Digitale (D.Lgs. 82/2005)

2 guides

CAD

National cybersecurity and compliance obligations for organizations within the scope of this regulation.

Penalties: National penalties apply
Authority: Governo Italiano
Deadline: January 1, 2006
Explore guides

E-ITS Baseline Security Controls (national standard)

0 guides

EITS

Public sector and regulated entities. Authority: RIA.

Penalties: National penalties apply
Authority: RIA
Deadline: January 1, 2020
Explore guides

eIDAS

2 guides

EU Regulation 910/2014 + EU Regulation 2024/1183 (eIDAS 2.0)

Digital identity and qualified trust services (digital signature, certified email, time stamp)

Penalties: Up to €5M or 2% of annual turnover
Authority: AgID - Agency for Digital Italy
Deadline: May 20, 2026
Explore guides

Elektronines informacijos saugos istatymas (Electronic Information Security Act)

0 guides

EISI

State information resources. Authority: NKSC.

Penalties: National penalties apply
Authority: NKSC
Deadline: June 21, 2011
Explore guides

Esquema Nacional de Seguridad - Real Decreto 311/2022

0 guides

ENS

Public sector, public service providers, critical infrastructure. Authority: CCN / Ministerio de Asuntos Economicos.

Penalties: National penalties apply
Authority: CCN / Ministerio de Asuntos Economicos
Deadline: May 4, 2022
Explore guides

GDPR

4 guides

EU Regulation 2016/679

Personal data protection in the European Union

Penalties: Up to €20M or 4% of annual global turnover
Authority: Data Protection Authority (Garante per la Protezione dei Dati Personali)
Explore guides

Informationssicherheitsgesetz (currently in preparation)

0 guides

IBSG

Federal administration IT security. Authority: BKA.

Penalties: National penalties apply
Authority: BKA
Deadline: January 1, 2025
Explore guides

ISO 27001

2 guides

ISO/IEC 27001:2022 - International standard

Information Security Management System (ISMS)

Penalties: N/A (voluntary standard)
Authority: Accredited certification bodies (Accredia in Italy)
Explore guides

Laki julkisen hallinnon tiedonhallinnasta (906/2019 - Information Management Act)

0 guides

JULKICTLAKI

Public administration entities. Authority: Digi- ja vaestotietovirasto.

Penalties: National penalties apply
Authority: Digi- ja vaestotietovirasto
Deadline: January 1, 2020
Explore guides

Legislative Decree 138/2024 - NIS2 Transposition

0 guides

D.Lgs. 138/2024

Soggetti essenziali e importanti nei 18 settori NIS2 (50+ dipendenti o 10M+ fatturato). Authority: ACN - Agenzia per la Cybersicurezza Nazionale.

Penalties: Fino a 10 milioni di euro o 2% del fatturato mondiale annuo
Authority: ACN - Agenzia per la Cybersicurezza Nazionale
Deadline: October 16, 2024
Explore guides

NIS2

4 guides

EU Directive 2022/2555 - Legislative Decree 138/2024

Network and information security for essential and important entities

Penalties: Up to €10M or 2% of annual turnover
Authority: ACN - National Cybersecurity Agency
Deadline: October 17, 2024
Explore guides

Regulation on National Interoperability Framework (KRI)

0 guides

Rozp. RM z dnia 12 kwietnia 2012 r.

Podmioty realizujace zadania publiczne. Authority: Ministerstwo Cyfryzacji.

Penalties: Administrative sanctions
Authority: Ministerstwo Cyfryzacji
Deadline: May 31, 2012
Explore guides

Discover Your Compliance Level for Public Administration

Check in just a few minutes which regulations apply to your public administration business and the priority actions to become compliant.

Start Free Assessment

Audit your website automatically

Scan your public website for GDPR cookie banner, accessibility (WCAG 2.1 AA), legal transparency and security headers — AI generates copy-pasteable fixes and a PDF report.

Discover the Website Compliance Audit