Decree-Law No. 125/2025 of 4 December was published, approving the new legal framework for cybersecurity, transposing Directive (EU) 2022/2555 (NIS II) into national law.
The new regime strengthens the framework for the prevention, detection and response to cybersecurity incidents, introducing new requirements for public and private entities, with a direct impact on the protection of critical digital assets, national security and the resilience of economic and social dynamics.