BIT supports organisations in preparing for the new National Cybersecurity Law
On 20 June 2024, the Saeima adopted the National Cyber Security Law to strengthen Latvia’s cybersecurity and align national regulations with EU directive requirements.
The law enters into force on 1 September 2024. Its main goal is to improve the security of information and communication technologies (ICT) and raise overall cyber resilience. It introduces significant changes, setting new standards and obligations for a wide range of organisations and service providers.
The law applies to:
- Essential and important service providers,
- ICT critical infrastructure owners and lawful managers,
- State and local government institutions (except national security authorities), private legal entities,
- And, in some cases, natural persons involved in coordinated vulnerability disclosure.
Organisations covered by the law must:
- Determine their status and register with the National Cyber Security Centre by 1 April 2025;
- Appoint a cybersecurity manager and submit their first cybersecurity self-assessment report by 1 October 2025.
The National Cyber Security Centre will begin operations on 1 September 2024.
The law brings a clear division of responsibilities and aims to ensure more effective cyber threat management and supervision — contributing to a stronger and more secure digital environment in Latvia.
To support organisations in adapting to the new requirements, Baltijas Informācijas Tehnoloģijas offers consultations and customised solutions, based on your specific needs.
For more information about the National Cyber Security Law, contact us at +371 67819981 or support@bit.lv.