"Pre-Implementation" Phase. Only one sectoral Act has been modified so far: Act 209 of 2011 on Water Suppliers. The NIS Directive has been partially implemented into the Hungarian legal system.
The Hungarian Implementing Act is "Act 134 of 2017 on modifying certain interior related tasks and corresponding laws" that amends several other Acts including Act CVIII of 2001 on e-commerce and informational society services, Act CLXVI of 2012 on identifying and protecting essential systems, etc.
Providers of registration- obliged services (digital services pursuant to Act CVIII of 2001 on e-commerce and informational society services) must immediately report significant incidents in relation to network and information systems that have significant effects on their services offered within the EU to the General Directorate for Disaster Management of the Ministry of Interior (Directorate).
Whether the incident is significant must be determined based on several aspects including the number of affected users, the duration and geographical scope of the incident, the level of disruption in the services and its economical/ social effects (in line with Art 16 (4) of NIS)).
Annex 1 of Government Decree 410/2017 (XII.15) on registration obligedservices provides for administrative fines to providers of registration- obliged services in case of breaching the obligations specified by the Annex of the Government Decree including the failure to notify the Directorate about significant incidents.
The amount of the imposed fine depends on the type of breach of obligation and varies between HUF 50,000 (~ EUR 165) and HUF 5,000,000 (~ EUR 16,500). The amount of fine cannot exceed HUF 5,000,000 even in case of multiple breaches of obligations, however fines can be imposed for the same breach of obligations as well.
Last reviewed 28.02.2018
NIS Directive and the energy sector: a patchwork of national implementations
Cyber security: the regulators bare their teeth
D Day for NISD as the EU's Network and Information Systems Directive (NISD) is implemented on May 9, 2018
What is NISR and who is impacted?
What exactly is a Digital Service Provider in the context of NIS Directive? Could you be a DSP and not know it?
NISR: Key deadline ahead as UK DSPs must register by November 1, 2018
NISD: First key deadline as Essential Operators required to register by August 10, 2018
As the implementation date of the NIS Directive approaches we ask: are Digital Service Providers (DSPs) aware of their compliance obligations?
Last month, we launched our 5th Global Women’s Development Programme with 20 associates from across the firm. The p… https://t.co/Z99ScgyKzW
We are now only a week away from our Annual TechLaw Event where we will discuss practical tips and some of the lega… https://t.co/4s8t7pAkza
The EC is proposing to regulate digital operational resilience for the #financialsector which could impact ICT serv… https://t.co/QVt1h6aqZc