For companies providing services to or collecting data from the E.U., the extensive GDPR requirements have drawn a lot of focus and attention – and rightfully so. But there are many other European data security initiatives and regulatory changes that organizations need to track and potentially comply with. In this guest article, Wiley Rein attorneys Megan Brown, Matthew Gardner, and Michael Diakiwski explain the requirements and impact of the NIS Directive as well as other developments by the European Commission, such as the Cybersecurity Law, and efforts by some individual member states. See also “Direct From the Irish Data Commissioner: GDPR Enforcement Priorities (Part Two of Two)” (May 2, 2018).