In a nutshell: Companies must register with the BSI for the NIS2 Directive by 31 July to remain regulatory compliant.
The Federal Office for Information Security (BSI) is calling on thousands of companies to register for the NIS2 Directive by 31 July. Registration is a prerequisite for meeting the new EU regulatory obligations.
The BSI has established a registration process through which companies must declare their classification as critical infrastructure or operators of essential services in accordance with the NIS2 Directive. The 31 July deadline applies to thousands of organisations in Germany that fall within the scope of the Directive.
For CISOs, registration represents a binding step towards the operational implementation of NIS2. The Directive obliges affected companies to meet minimum cybersecurity requirements, including technical and organisational measures as well as incident reporting obligations. Without registration, no regulatory compliance requirements can be issued by the authorities, but regulatory oversight is also lost — which leaves the regulatory status unclear.
The BSI provides registration options, including through its portal. CISOs should check whether their organisation is subject to the registration requirement and, if necessary, take action in good time before the deadline to avoid inconsistencies or delayed compliance evidence.
Source: news.google.com · Published 30 June 2026
Lumi AI News — AI-assisted curation in accordance with Article 50 EU AI Act. Paraphrase and classification by Lumi News Pipeline v1.7.3.