Article 17

International cooperation

Directive on the security of network and information systems · UE 2022/2555

International cooperation

The Union may, where appropriate, conclude international agreements, in accordance with Article 218 TFEU, with third countries or international organisations, allowing and organising their participation in particular activities of the Cooperation Group, the CSIRTs network and EU-CyCLONe. Such agreements shall comply with Union data protection law.

Luxembourg specificity
loi luxembourgeoise du 28 juillet 2023 relative a la cybersecurite

In Luxembourg, the ILR (Institut Luxembourgeois de Regulation) is the national cybersecurity authority that receives incident notifications, runs inspections and imposes administrative sanctions. The law of 28 July 2023 on cybersecurity, amended by the law of 28 July 2025, transposes NIS 2 and places under ILR oversight the compliance of your incident response flows, including when they involve non-EU providers. As the Luxembourg ecosystem relies heavily on hosts and SOCs connected to eBRC, LuxConnect and POST, verifying extra-European chains is a recurring inspection focus.

Luxgap practice: map every non-EU detection or threat intelligence provider upstream and keep a TIA enforceable before the ILR for each security data flow leaving the European space.