ISMS Copilot
Kibernetinio saugumo įstatymas

Kibernetinio saugumo įstatymas Copilot

Navigate Lithuania's NIS 2 transposition with confidence

Start Free TrialSee it in action

What the Kibernetinio saugumo įstatymas Copilot Can Do

Identify whether your organisation qualifies as an essential or important entity

Understand the 24-hour, 72-hour, and one-month incident reporting obligations under Art. 18

Map your sector and size criteria against NKSC classification requirements

Interpret technical and organisational security requirements for your entity type

Track the penalty tiers applicable to essential and important entities under Chapter V

Draft incident report structures aligned with the Art. 18 notification timeline

About Kibernetinio saugumo įstatymas Copilot

The Kibernetinio saugumo įstatymas Nr. XII-1428 (as amended by Nr. XIV-2902) is Lithuania's transposition of the NIS 2 Directive, supervised by the National Cybersecurity Centre (NKSC). ISMS Copilot helps you interpret its obligations for essential and important entities operating under Lithuanian jurisdiction.

Who it's for

NIS 2

Parent EU directive — transposed into Lithuania's national law.

NIS 2 Germany

Sister national transposition of NIS 2.

NIS 2 Belgium

Sister national transposition of NIS 2.

Frequently Asked Questions

What is the Kibernetinio saugumo įstatymas?

It is Lithuania's national cybersecurity law (Nr. XII-1428), substantially revised by amendment Nr. XIV-2902 to transpose the EU NIS 2 Directive, with the amended version entering into force on 18 October 2024. It establishes obligations for essential and important entities and designates NKSC as both the competent authority and national CSIRT.

How does the Kibernetinio saugumo įstatymas Copilot help?

Copilot helps you interpret the law's requirements — including entity classification criteria, the Art. 18 incident notification timeline, and the penalty framework in Chapter V — so your team can work through obligations more efficiently. It supports your analysis but does not replace legal counsel or official NKSC guidance.

What are the penalty levels for non-compliance?

Under Chapter V, essential entities may face fines up to 10,000,000 EUR or 2% of global annual turnover (whichever is higher), while important entities may face fines up to 7,000,000 EUR or 1.4% of global annual turnover. Separate, lower caps apply to budget-funded institutions that hold essential or important entity status under Art. 30.

Ready to streamline your compliance work?

Built for speed, accuracy, and audit-ready output.

Try ISMS Copilot 2.0