U.S. Companies Unaware of EU Cybersecurity Regulations (Forbes)


U.S. companies have been abuzz about compliance requirements with the European Union’s Global Data Protection Regulation (GDPR), which became effective May 25, 2018. The GDPR was so scary because the enforcement provisions allowed fines up to 2-4% of total global turnover. U.S. businesses are largely unaware, however, of the EU’s regulatory actions on cybersecurity, particularly the Directive on Security of Network and Information Systems, known as the NIS Directive.