Cybersecurity becomes a critical business priority – Preparedness for regulatory scrutiny and operational resilience is key.

This is one of the key takeaways from the latest Lexology Q&A on Greece’s evolving cybersecurity framework, authored by Irene Kyriakides, Partner and Head of Data Privacy and Cybersecurity, alongside Natalia Soulia Counsel, and other members of the team.

The publication provides a deep dive into the evolving regulatory landscape and the practical implications for businesses operating in Greece, focusing on the growing emphasis of cybersecurity as part of overall business strategy.

Key topics include:

🔹 Classification and obligations of “essential” vs “important” entities

🔹 New compliance obligations after the implementation of NIS2 Directive through Law 5160/2024 and Ministerial Decision 1689/2025
🔹 Incident reporting timelines and board-level accountability

🔹 Coordination among multiple competent authorities

🔹 How to address cybersecurity risks in strategic deals and business operations

Read the full Q&A here: https://www.lexology.com/panoramicnext/privacy-and-cybersecurity-2025/greece