All questions
Year in review
The past year was marked by significant regulatory and technological developments. More specifically, Greece transposed the European Digital Services Act (DSA)1 into national law through Law 5099/2024,2 which entered into force in February 2024. Further, in November 2024, Law 5160/20243 was published, which incorporated into the Greek legislation the NIS2 Directive4 that significantly expands the scope of the NIS1 Directive5 and establishes a comprehensive framework of obligations, measures and rules designed to achieve a high common level of cybersecurity across the European Union. Law 5160/2024 largely mirrors the provisions of the NIS2 Directive. Law 5160/2024 is complemented by Law 5236/20256 on the identification and resilience of critical entities that came into force in October 2025. The new law is closely aligned with Law 5160/2024, as they both aim at strengthening resilience against physical and digital threats. In May 2024, the EU Gigabit Infrastructure Act (GIA)7 came into force, which is fully applicable as of 12 November 2025. GIA introduces new rules to speed up, reduce the cost of, and streamline the deployment of Gigabit networks. Last, in May 2024, the European Media Freedom Act (EMFA)8 also entered into force, aiming at safeguarding media freedom and pluralism in the European Union. On 25 November 2025, Law 5253/2025 was published,9 which modernises the legal framework for the organisation and operation of the ‘Hellenic Broadcasting Corporation S.A. (E.R.T. S.A.)’ and strengthens its public character and its competitiveness in the Mass Media market, as well as adopting measures for the implementation of the EMFA into the Greek legislation.
