{"id":1787,"date":"2026-01-26T17:05:19","date_gmt":"2026-01-26T15:05:19","guid":{"rendered":"https:\/\/tampere.eu\/the-digital-network-act-and-cybersecurity-package-towards-a-europes-digital-decade-2030\/"},"modified":"2026-01-27T12:55:45","modified_gmt":"2026-01-27T10:55:45","slug":"the-digital-network-act-and-cybersecurity-package-towards-a-europes-digital-decade-2030","status":"publish","type":"post","link":"https:\/\/tampere.eu\/en\/the-digital-network-act-and-cybersecurity-package-towards-a-europes-digital-decade-2030\/","title":{"rendered":"The Digital Network Act and Cybersecurity Package \u2013 Towards a Europe’s Digital Decade 2030"},"content":{"rendered":"\n

Last week, the Commission published proposals that aim to respond to rapid technological change and an increasingly complex geopolitical situation. The Digital Network Act combines electronic communications regulations into a single EU framework, strengthening the internal market, online security, and investment. The Cybersecurity Package improves the EU’s ability to anticipate, prevent, and manage cybersecurity threats by streamlining regulations and securing supply chains. <\/em> <\/p>\n\n

\"\"
\u00a9 Euroopean comission. EVP Henna Virkkunen, 2026 <\/em>.<\/figcaption><\/figure>\n\n

The Digital Networks Act<\/strong><\/p>\n\n

The Digital Networks Act (DNA) was presented as a competitiveness measure in the European Commission’s Competitiveness Compass<\/a> at the beginning of 2025. The Commission published its legislative regulation proposal on January 21st, 2026. The Digital Network Act establishes a more cohesive framework for the internal market by combining four existing regulations – European Electronic Communications Code (EECC), Body of European Regulators of Electronic Communications (BEREC), Radio Spectrum Policy Programme, and Open internet and net neutrality – into one regulation. Tech Commissioner Henna Virkkunen<\/strong> describes that the Commission’s goal is to establish a digital environment where new technologies are easily accessible and affordable and are based on fair and reliable rules that benefit people. For this reason, the Commission is proposing a regulation instead of a directive to ensure uniform application in the member states. A regulation is binding than a directive – regulation must be applied in its entirety across the EU. <\/p>\n\n

The proposed regulation aims to improve network security and resilience. The proposal prioritizes reducing the administrative burden on companies and creating a clearer, more predictable operating environment. Reducing the administrative burden would free up capacity for innovation and investment. <\/p>\n\n

The first step toward this goal is to create a unified digital passport system for service providers called the “Single Passport.” This system would enable service providers to access the entire EU market by notifying only one Member State’s regulatory authority of their intentions. These authorities would be required to approve these notifications in a short timeframe. <\/p>\n\n

Ennustettavuuden, hallinnollisen taakan v\u00e4hent\u00e4misen ja s\u00e4\u00e4ntelyn selkeytt\u00e4misen lis\u00e4ksi DNA:ssa esitell\u00e4\u00e4n EU:n tason varautumissuunnitelma, jolla torjuttaisiin luonnonkatastrofien ja ulkomaisten tahojen verkkoihin ja radiosignaaleihin kohdistuvien h\u00e4iri\u00f6iden kasvavia riskej\u00e4. My\u00f6s EU:n tason yhteisty\u00f6t\u00e4 halutaan kasvattaa ja ehdotuksessa esitell\u00e4\u00e4nkin vapaaehtoisuuteen perustuva yhteisty\u00f6mekanismi sektorin eri palveluntarjoajien sek\u00e4 muiden toimijoiden v\u00e4lille.<\/p>\n\n

The proposed legislation aims to accelerate the transition from copper networks to full fibre digital environment that serves the future requirements. It requires mandatory national transition plans and aims to achieve full fibre network coverage by 2030\u20132035. Strengthening digital networks will enable wider adoption of AI, cloud, space and other innovative technologies. <\/p>\n\n

Cybersecurity Package<\/strong><\/p>\n\n

Key services and democratic institutions in Europe face cyber and hybrid attacks everyday. The first Cybersecurity Act was adopted in 2019, and on January 20th, 2026, the Commission published Cybersecurity Package that proposes amendments to this regulation. These revisions will enhance the security of the EU’s information and communication technology supply chains and strengthen the EU’s cyber resilience. The package mostly consists simplifying regulations to make enforcement easier. <\/p>\n\n

The European Cybersecurity Certification Framework (ECCF) will be simplified and more transparent system that ensures products that enters the markets are cybersecurity-ready allready from the design stage onward. This voluntary certification system allows companies to demonstrate their compliance with EU legislation. The certificate guarantees a high level of security for citizens, businesses, and authorities and increases confidence in complex supply chains. <\/p>\n\n

It is proposed that the role of the European Union Agency for Cybersecurity (ENISA) be strengthened. ENISA supports Member States, EU businesses, and other stakeholders in managing and preparing for cybersecurity threats. The agency is also responsible for establishing a single entry-point for entities to report incident in only one place as proposed in the Digital Omnibus<\/a>. This measure will improve the EU’s ability to anticipate, manage, and respond to cyber threats. <\/p>\n\n

The package also aims to strengthen the security of information and communication technology supply chains. Given the current geopolitical situation, supply chain security now includes not only the security of technical products or services, but also the risks associated with suppliers. <\/p>\n\n

The update to the NIS2 Directive (Network and Information Security Directive), included in the Cybersecurity Package, will improve enforcement of cybersecurity obligations and strengthen cybersecurity. The NIS2 Directive has created a uniform minimum level of cybersecurity, and now targeted changes are being made to simplify it, increase legal clarity, and ensure more consistent implementation in Member States. <\/strong><\/p>\n\n

The proposed regulations will now be debated in Parliament. According to the standard legislative procedure, Parliament and the Council of the European Union will approve the Commission’s legislative proposals. According to current estimates, the final regulations will enter into force in spring 2027. <\/p>\n\n

<\/a><\/p>\n\n

<\/p>\n","protected":false},"excerpt":{"rendered":"

Last week, the Commission published proposals that aim to respond to rapid technological change and…<\/p>\n","protected":false},"author":9,"featured_media":1784,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_kad_blocks_custom_css":"","_kad_blocks_head_custom_js":"","_kad_blocks_body_custom_js":"","_kad_blocks_footer_custom_js":"","_kadence_starter_templates_imported_post":false,"_kad_post_transparent":"","_kad_post_title":"","_kad_post_layout":"","_kad_post_sidebar_id":"","_kad_post_content_style":"","_kad_post_vertical_padding":"","_kad_post_feature":"","_kad_post_feature_position":"","_kad_post_header":false,"_kad_post_footer":false,"_kad_post_classname":"","footnotes":""},"categories":[1],"tags":[182,181],"class_list":["post-1787","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-uncategorized","tag-cybersecurity","tag-digital-network-act"],"taxonomy_info":{"category":[{"value":1,"label":"Uncategorized"}],"post_tag":[{"value":182,"label":"Cybersecurity"},{"value":181,"label":"Digital Network Act"}]},"featured_image_src_large":["https:\/\/tampere.eu\/wp-content\/uploads\/2026\/01\/virkkunen.png",601,400,false],"author_info":{"display_name":"Verna Lukkari","author_link":"https:\/\/tampere.eu\/en\/author\/verna\/"},"comment_info":0,"category_info":[{"term_id":1,"name":"Uncategorized","slug":"uncategorized","term_group":0,"term_taxonomy_id":1,"taxonomy":"category","description":"","parent":0,"count":27,"filter":"raw","cat_ID":1,"category_count":27,"category_description":"","cat_name":"Uncategorized","category_nicename":"uncategorized","category_parent":0}],"tag_info":[{"term_id":182,"name":"Cybersecurity","slug":"cybersecurity","term_group":0,"term_taxonomy_id":182,"taxonomy":"post_tag","description":"","parent":0,"count":1,"filter":"raw"},{"term_id":181,"name":"Digital Network Act","slug":"digital-network-act","term_group":0,"term_taxonomy_id":181,"taxonomy":"post_tag","description":"","parent":0,"count":1,"filter":"raw"}],"_links":{"self":[{"href":"https:\/\/tampere.eu\/en\/wp-json\/wp\/v2\/posts\/1787","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/tampere.eu\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/tampere.eu\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/tampere.eu\/en\/wp-json\/wp\/v2\/users\/9"}],"replies":[{"embeddable":true,"href":"https:\/\/tampere.eu\/en\/wp-json\/wp\/v2\/comments?post=1787"}],"version-history":[{"count":1,"href":"https:\/\/tampere.eu\/en\/wp-json\/wp\/v2\/posts\/1787\/revisions"}],"predecessor-version":[{"id":1788,"href":"https:\/\/tampere.eu\/en\/wp-json\/wp\/v2\/posts\/1787\/revisions\/1788"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/tampere.eu\/en\/wp-json\/wp\/v2\/media\/1784"}],"wp:attachment":[{"href":"https:\/\/tampere.eu\/en\/wp-json\/wp\/v2\/media?parent=1787"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/tampere.eu\/en\/wp-json\/wp\/v2\/categories?post=1787"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/tampere.eu\/en\/wp-json\/wp\/v2\/tags?post=1787"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}