ISMS Copilot
Zákon č. 69/2018 Z. z.

Zákon č. 69/2018 Z. z. Copilot

Navigate Slovakia's cybersecurity law and its NIS 2 obligations with confidence

Démarrer l'essai gratuitVoir en action

Ce que le Zákon č. 69/2018 Z. z. Copilot peut faire

Understand the distinction between essential and important subject regimes under § 17

Identify the 18 security measure domains required under § 20 ods. 2

Map supply chain security obligations and contractual requirements under § 19 ods. 2

Navigate the 24-hour, 72-hour, and one-month incident reporting timeline under § 24

Interpret administrative penalty thresholds for essential and important subjects under § 31

Track registration timelines and obligations arising from NBÚ notification under § 17 ods. 5

About Zákon č. 69/2018 Z. z. Copilot

Zákon č. 69/2018 Z. z., as amended by zákon č. 366/2024 Z. z., is Slovakia's primary cybersecurity law transposing the EU NIS 2 Directive. It establishes obligations for operators of essential services across registration, security measures, incident reporting, and enforcement.

À qui c'est destiné

NIS 2

Parent EU directive — transposed into Slovakia's national law.

NIS 2 Germany

Sister national transposition of NIS 2.

NIS 2 Belgium

Sister national transposition of NIS 2.

Questions fréquemment posées

What is zákon č. 69/2018 Z. z.?

Zákon č. 69/2018 Z. z. is Slovakia's core cybersecurity law, substantially amended by zákon č. 366/2024 Z. z. to transpose the EU NIS 2 Directive. It sets out obligations for operators of essential services, the role of the Národný bezpečnostný úrad (NBÚ) as the supervisory authority, and the framework for incident reporting, security measures, and enforcement.

How does the Zákon č. 69/2018 Z. z. Copilot help?

The Copilot helps you read and interpret specific provisions of the law and its implementing decrees — including vyhláška č. 226/2025 Z. z. on incident reporting and vyhláška č. 227/2025 Z. z. on security measures — so you can understand what the law requires and identify where your organisation's practices may need attention.

What are the main security measure obligations for operators of essential services?

Under § 20 ods. 2, operators of essential services must adopt and implement security measures across 18 defined domains — including risk management, asset management, supply chain security, access control, incident response, and vulnerability management — within 12 months of registration, with detailed requirements further specified in vyhláška č. 227/2025 Z. z.

Prêt à optimiser votre travail de conformité ?

Conçu pour la rapidité, la précision et des livrables prêts pour l'audit.

Essayer ISMS Copilot 2.0