The NIS Directive requires the implementation of performatively defined security standards in the field of cybersecurity. The compliance logic, in this case, leads to a high demand for both audit and certification services between private and public baseline administrators, allowing official confirmation of compliance of the solutions with the regulatory requirements. The Cyber Security Act introducing a European certification system is now freshly responding to this request. The presentation will focus on the logic of the act and on the current state of its implementation. Particular attention will be paid to the critical review of upcoming certification schemes (systems), the functioning of national CABs in the small Member States, and the scope for an independent national solution in cybersecurity and related areas.
The phenomenon of C2C facility rental or service platforms emerged rapidly in past years. Apart global players like Uber or Airbnb, there gradually appear (and disappear) local or regional providers that offer variety of services from babysitting to cleaning or home culinary experiences. These platforms are professionally run by business establishments and serve standard public demands for food, accommodation, transportation etc. On the other hand, mere services are provided on C2C basis which makes it difficult to force them to comply with traditional regulations with regards to health & safety, taxation, labour conditions and other important domains. The paper will discuss these regulatory issues and outline possible developments of new European regulatory framework.