At the end of 2022, the European Union adopted Directive (EU) 2022/2555 (NIS 2), aimed at establishing a high common level of cybersecurity across the Union. It represents a significant update and extension of the NIS 1 Directive, adapted to the current context of digital threats and interdependencies.

Opinion by Ioana Hategan, LLM (De), EMBA (SDA Bocconi School of Management), Managing Partner/M&A and PE Leader (Hategan Attorneys)

Artificial intelligence is rapidly transforming traditional professions, and the legal field is no exception. AI platforms are increasingly capable of searching, synthesizing, and structuring legal information—tasks that, until recently, defined the value brought by a lawyer.

This evolution raises a fundamental question: what is the added value that a business lawyer can still offer corporate clients today?

Romania is taking a decisive step toward integrating the EU’s Corporate Sustainability Reporting Directive (CSRD) through the triple regulatory framework simultaneously established by the Ministry of Finance through Order No. 85/2024, the Financial Supervisory Authority through Norm No. 4/2024, and the National Bank of Romania through Order No. 1/2024.

Romania continues to experience a significant labor shortage due to widespread emigration and demographic decline, particularly in the construction, trade, and HoReCa (Hotel/Restaurant/Café) sectors.

Amid the acceleration of digitalization in the professional services sector, Romania is facing a new form of cybercrime, previously little known: legal phishing. This fraudulent method involves the impersonation of attorneys or law firms for the purpose of sending false, but seemingly legitimate communications, designed to extract sensitive information or install malware on recipients' devices.