ImplementedNIS2
NIS2 in Greece
Greece enacted Law 5160/2024 to transpose NIS2. The National Cybersecurity Authority (NCSA) manages compliance across all critical infrastructure.
Transposition law
Law 5160/2024 (Transposition of NIS2)
In force
27 November 2024
Competent authority
National Cybersecurity Authority (NCSA)
Max fine (Essential)
€10 million or 2% of global annual turnover
Max fine (Important)
€7 million or 1.4% of global annual turnover
Full enforcement
November 2024
Key Deadlines
Law in force
27 November 2024
Competent Authority
National Cybersecurity Authority (NCSA)
Central regulator and supervisory body
https://cybersecurity.gov.gr ↗NCSA coordinates reactive inspections and mandates continuous system vulnerability scanning for critical entities.
Registration Process
Submit registry documentation through the Greek e-government portal at cybersecurity.gov.gr.
📊 Quick Test
Check NIS2 Scope →Find out if your company is in scope
Does your organisation fall under Annex I (Essential) or Annex II (Important) entities?
Key Requirements
- 1Formal registration with NCSA within the national directory
- 2Symmetric incident declarations to NCSA within 24 hours
- 3Mandatory backup policy and data protection safeguards
National Additions
★Greece has included specific sectors related to public health digital databases and tourist hub logistics
FAQ: NIS2 in Greece
What is the official Greek NCSA registry?
It is the centralized list of organizations certified as Essential or Important Entities under Law 5160/2024.
Ready to assess your NIS2 compliance?
Use our free tools to check your NIS2 scope and run a gap assessment.