Kategorie: EU Law
New Cybersecurity Act: personal liability for management and tough penalties starting in November!
On 4 August 2025, the new Cybersecurity Act (CSA) was published in the Collection of Laws, which implements the European NIS2 Directive into the Czech law. The new rules will take effect on 1 November 2025. The CSA significantly expands the range of entities covered by the regulation – it will now apply to many …
Read moreThe second wave of obligations under the AI Act is coming
The implementation of Regulation (EU) 2024/1689 (the AI Act) is entering its next phase. As of 2 August 2025, the second wave of obligations under the EU’s artificial intelligence (AI) regulation will take effect. This phase will significantly impact technology companies, AI system providers, regulatory authorities, and Member States. We already covered the first wave of …
Read moreCybersecurity as a managerial responsibility: Thousands of companies are facing a new regime
On Thursday, 26 June 2025, the President signed the long-awaited new act on cyber security (the “NZKB“). The formal publication of the NZKB in the Collection of Laws is expected to take place during August, with the act expected to come into force in early November 2025. The NZKB transposes into Czech law the requirements of …
Read moreProcessing of personal data based on legitimate interest
Pursuant to Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (“GDPR“), it is possible to process personal data …
Read more