Contribute to the protection of our cyber infrastructures by reporting incidents you encounter!
According to Law 25/2024 “On cyber security”, its article 25, every subject, except the operators of critical and important information infrastructures, have the opportunity to voluntarily report cyber security incidents.
What does this article contain?
1. In addition to the operators of critical and important information infrastructures, other subjects also report voluntarily.
2. The National CSIRT examines the reports made and, depending on them, determines the importance of the impact of the cyber incident, according to the parameters mentioned in point 4 of article 23 of this law, applying the principle of confidentiality in any case.
3. Voluntary reports are reviewed by the Authority only after it has been assessed that these reports do not affect the treatment of mandatory reports of operators of critical and important information infrastructures.
4. Voluntary reporting does not create consequences or obligations for the reporting subject, if he would not have made such a report.