{"id":238446,"date":"2025-07-14T10:25:59","date_gmt":"2025-07-14T10:25:59","guid":{"rendered":"https:\/\/bm.dev.synology.me\/?p=238446"},"modified":"2025-07-14T10:25:59","modified_gmt":"2025-07-14T10:25:59","slug":"octavian-popa-si-silvia-axinescu-deloitte-completari-cheie-in-noua-lege-referitoare-la-directiva-nis-2-trei-aspecte-importante-pentru-companii-incepand-cu-10-iulie-2025","status":"publish","type":"post","link":"https:\/\/bm.dev.synology.me\/?p=238446","title":{"rendered":"Octavian Popa \u015fi Silvia Axinescu, Deloitte: Complet\u0103ri cheie \u00een noua lege referitoare la Directiva NIS 2: trei aspecte importante pentru companii \u00eencep\u00e2nd cu 10 iulie 2025"},"content":{"rendered":"<p>\nValidarea legislativ\u0103 a m\u0103surilor prev\u0103zute de OUG 155\/2024, act normativ care transpune <a href=\"https:\/\/www.deloitte.com\/ro\/en\/services\/risk-advisory\/services\/nis2-directive.html?icid=top_nis2-directive\">Directiva NIS (<em>Network and Information Security<\/em>) 2<\/a> la nivel local, a avut loc prin publicarea \u00een Monitorul Oficial \u00een data de 7 iulie 2025 a Legii 124\/2025. Acest act normativ a intrat \u00een vigoare \u00eencep\u00e2nd cu 10 iulie 2025 \u015fi marcheaz\u0103 un nou pas important \u00een \u00eent\u0103rirea securit\u0103\u0163ii cibernetice pentru re\u0163elele \u015fi sistemele informatice din spa\u0163iul na\u0163ional civil.<\/p>\n<p>\n\u00cen completarea m\u0103surilor stabilite prin OUG 155\/2024, Legea 124\/2025 aduce o serie de nout\u0103\u0163i pe care entit\u0103\u0163ile esen\u0163iale \u015fi importante ar trebui s\u0103 le ia \u00een considerare. Una dintre cele mai importante actualiz\u0103ri aduse prin Legea 124\/2025 este introducerea a dou\u0103 noi categorii de entit\u0103\u0163i \u00een <strong>sectorul s\u0103n\u0103t\u0103\u0163ii<\/strong> care se vor supune legisla\u0163iei NIS 2. Astfel,<strong> entit\u0103\u0163ile care de\u0163in autoriza\u0163ii de distribu\u0163ie a medicamentelor, <\/strong>conform art. 803 din Legea nr. 95\/2006 republicat\u0103, vor trebui s\u0103 se alinieze standardelor de securitate cibernetic\u0103 prev\u0103zute de noua legisla\u0163ie. De asemenea, companiile care desf\u0103\u015foar\u0103 <strong>activit\u0103\u0163i economice \u00een domeniul comer\u0163ului cu ridicata \u015fi cu am\u0103nuntul al produselor farmaceutice<\/strong>, conform diviziunilor 4646 \u015fi 4773 din CAEN Rev. 3, sunt acum incluse \u00een categoria entit\u0103\u0163ilor care trebuie s\u0103 se conformeze Legii 124\/2025.<\/p>\n<p>\nUn alt aspect de noutate inclus \u00een Legea 124\/2025 const\u0103 \u00een <strong>definirea clar\u0103 a ceea ce este considerat a fi un incident semnificativ de securitate cibernetic\u0103<\/strong>. Potrivit legisla\u0163iei, un incident semnificativ se caracterizeaz\u0103 prin \u00eendeplinirea <strong>a cel pu\u0163in una<\/strong> dintre urm\u0103toarele condi\u0163ii, f\u0103r\u0103 a fi nevoie ca acestea s\u0103 se manifeste <strong>cumulativ<\/strong>. Prima condi\u0163ie presupune determinarea modului \u00een care incidentul a provocat sau are poten\u0163ialul de a provoca perturb\u0103ri opera\u0163ionale grave ale serviciilor sau pierderi financiare semnificative pentru entitatea \u00een cauz\u0103. A doua condi\u0163ie implic\u0103 poten\u0163ialul incidentului de a afecta alte persoane fizice sau juridice, cauz\u00e2nd prejudicii materiale sau de alta natur\u0103, precum cele de reputa\u0163ie.<\/p>\n<p>\nPe l\u00e2ng\u0103 sectorul s\u0103n\u0103t\u0103\u0163ii, \u015fi <strong>sectorul alimentar<\/strong> este vizat de unele nout\u0103\u0163i incluse \u00een Legea 124\/2025. Actul normativ propune o completare \u00een denumirea sectorului pentru a include produc\u0163ia, prelucrarea<strong> \u015fi\/sau<\/strong> distribu\u0163ia de alimente printre domeniile de activitate impactate de Directiva NIS 2. Acest lucru permite identificarea entit\u0103\u0163ilor din sector \u00eentr-o manier\u0103 mai flexibil\u0103, demersul <strong>nefiind restr\u00e2ns<\/strong> la cele care realizeaz\u0103 toate aceste activit\u0103\u0163i <strong>\u00een mod cumulativ<\/strong>. Aceast\u0103 completare faciliteaz\u0103 o mai bun\u0103 aplicare a legisla\u0163iei \u00een materie de securitate cibernetic\u0103.<\/p>\n<p>\nLegisla\u0163ia recent adoptat\u0103 nu doar c\u0103 r\u0103spunde necesit\u0103\u0163ilor emergente legate de securitatea cibernetic\u0103, dar promoveaz\u0103 \u015fi o colaborare consolidat\u0103 \u00eentre diferite entit\u0103\u0163i \u015fi institu\u0163ii la nivel na\u0163ional. Prin integrarea acestor noi categorii de entit\u0103\u0163i \u00een legisla\u0163ia privind Directivei NIS 2, adoptarea Legii 124\/2025 urm\u0103re\u015fte crearea unui mediu mai sigur, care s\u0103 sprijine dezvoltarea tehnologic\u0103 durabil\u0103 \u015fi protejarea datelor de interes.<\/p>\n<p>\n&nbsp;<\/p>\n<p>\n<em>Material de opinie de Octavian Popa, Cyber Strategy Manager, Deloitte Rom\u00e2nia, \u015fi Silvia Axinescu, Senior Managing Associate, Reff &#038; Asocia\u0163ii | Deloitte Legal<\/em><\/p>\n<p>\n&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Validarea legislativ\u0103 a m\u0103surilor prev\u0103zute de OUG 155\/2024, act normativ care transpune Directiva NIS (Network and Information Security) 2 la nivel local, a avut loc prin publicarea \u00een Monitorul Oficial \u00een data de 7 iulie 2025 a Legii 124\/2025. Acest act normativ a intrat \u00een vigoare \u00eencep\u00e2nd cu 10 iulie 2025 \u015fi marcheaz\u0103 un nou [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[510],"tags":[201,8493,60833,303,274,7285,315],"class_list":["post-238446","post","type-post","status-publish","format-standard","hentry","category-actualitate","tag-companii","tag-deloitte","tag-directiva-nis-2","tag-important","tag-incepere","tag-legislatie","tag-sector"],"_links":{"self":[{"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=\/wp\/v2\/posts\/238446","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=238446"}],"version-history":[{"count":0,"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=\/wp\/v2\/posts\/238446\/revisions"}],"wp:attachment":[{"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=238446"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=238446"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=238446"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}