A new cybersecurity directive (NIS 2) will come into effect as of 2025. This directive will apply throughout Europe and aims to tighten obligations for businesses, with new requirements for data protection and compliance. A new requirement of the NIS 2 directive is the widening of the scope of application, therefore including several thousand organisations and an estimated 16,000 institutions in Europe. Faced with the rise of cybercriminality, this new application aims at strengthening the protection of information systems, IT networks and data.