Regulatory Directory
Where to report security incidents in the EU
Every EU member state has designated authorities for cyber incidents, data breaches, and financial sector incidents. Find yours below.
NIS2 Art. 23
24h / 72h / 1m
Early warning → Notification → Final report
Report to: National CSIRT
GDPR Art. 33
72h
Personal data breach notification
Report to: Data Protection Authority
DORA Art. 19
4h
Major ICT incident (financial sector)
Report to: Financial supervisor
Select your country
AT
Austria
BE
Belgium
BG
Bulgaria
CY
Cyprus
CZ
Czech Republic
DE
Germany
DK
Denmark
EE
Estonia
ES
Spain
FI
Finland
FR
France
GR
Greece
HR
Croatia
HU
Hungary
IE
Ireland
IT
Italy
LT
Lithuania
LU
Luxembourg
LV
Latvia
MT
Malta
NL
Netherlands
PL
Poland
PT
Portugal
RO
Romania
SE
Sweden
SI
Slovenia
SK
Slovakia
Automate your incident reporting workflow
SiteGuardian tracks NIS2 and GDPR deadlines, pre-fills your authority contacts, and logs every notification for audit evidence.
Start monitoring free →