CCR admits President Iohannis's notification on ensuring a high common level of computer security

Romania's Constitutional Court (CCR) on Wednesday admitted the notification of President Klaus Iohannis cornering the Law on ensuring a high common level of security of computer systems and networks.

The notification mentions, among other things, that the law was adopted without the approval of the Supreme Council of National Defence (CSAT).

The President says that the law transposes (EU) Directive 2016/1,148 and the July 6 2016 Directive of the European Parliament and Council concerning such measures that need to be taken in order to ensure a high common level of security of computer systems and networks in the Union, while pointing out that the normative act establishes the legal and institutional framework, the necessary mechanism for ensuring a high level of security of computer systems and networks and boost cooperation in this field.

The head of the state also specified that the law stipulates its provisions do not apply to the defence field, public order and national security fields, as well as to the National Registry Office for Classified Information, but the manner in which its concepts of security of computer systems and networks are defined, national strategy in relation to the security of computer systems and networks, operator of essential services and provider of digital services, corroborated with the provisions of the Appendix, where there are presented the activity fields considered by the law, lead to the conclusion that the normative acts regulates the security of the components for information technology and communications related to national or European critical infrastructures, as defined by art. 3 of GEO no. 98/2010 regarding the identification, designation and protection of critical infrastructures.