International cooperation
Directive on the security of network and information systems · UE 2022/2555
International cooperation
The Union may, where appropriate, conclude international agreements, in accordance with Article 218 TFEU, with third countries or international organisations, allowing and organising their participation in particular activities of the Cooperation Group, the CSIRTs network and EU-CyCLONe. Such agreements shall comply with Union data protection law.
In Luxembourg, the ILR (Institut Luxembourgeois de Regulation) is the national cybersecurity authority that receives incident notifications, runs inspections and imposes administrative sanctions. The law of 28 July 2023 on cybersecurity, amended by the law of 28 July 2025, transposes NIS 2 and places under ILR oversight the compliance of your incident response flows, including when they involve non-EU providers. As the Luxembourg ecosystem relies heavily on hosts and SOCs connected to eBRC, LuxConnect and POST, verifying extra-European chains is a recurring inspection focus.
Luxgap practice: map every non-EU detection or threat intelligence provider upstream and keep a TIA enforceable before the ILR for each security data flow leaving the European space.