The European Union has already taken a number of measures to increase resilience and achieve better cyber security preparedness. The first EU Cyber ​​Security Strategy adopted in 2013 sets out strategic objectives and concrete actions to achieve resilience, reduce cybercrime, develop cyber defense policy and capabilities, develop industrial and technological resources.

An important step was the adoption of the Network and Information Systems Directive (NIS Directive).

The NIS Directive is the first major step towards promoting a risk management culture by introducing security requirements as legal obligations for key economic operators, in particular for basic service operators and suppliers of some key digital services. This Directive and consequently other related measures and directives provided the basis for drafting the legislation of individual EU countries in the field of cyber security.

WebArat has integrated requirements of two states:

Slovak republic:
Act no. 69/2018 Coll. on cyber security and on amendments to certain laws
Czech Republic
Act no. 181/2014 Coll. on cyber security and amending related laws
"The basic objective of the Act is to increase the security of cyberspace, in this context to identify relevant obligations and responsibilities of obliged entities under the Act, to identify technical and organizational requirements for ensuring cyber security or to set up a mechanism of active cooperation between the private sector and cyber security incidents."