“The biggest challenge for manufacturers today is navigating the multitude of new digital rules, which are emerging gradually and constantly evolving. We live in a dynamic world, and legislation strives to respond to these changes,” explains Michal Karkuš from Hronček & Partners.
According to him, it is therefore important for companies to have a partner who understands regulations as an interconnected whole. When implemented in a coordinated manner, added value can also be gained through synergistic effects. “Digital security is a problem that has been underestimated for years, but the sharp increase in cyberattacks is a clear signal that this is an area that requires significant attention,” he adds.
GDPR: the most Common Mistake is Underestimating its Importance
Although GDPR has been in effect for several years, many manufacturing companies are still struggling with it.
“The most common mistake is underestimating the importance of GDPR itself. Working with personal data requires a high degree of caution and expertise – not only because it is a sensitive topic, but also because GDPR forms the basis for many other digital regulations,” says Karkuš.
According to him, in practice, they often encounter documentation that formally “covers” the company but does not protect it in reality. The solution is simple – have the documents reviewed by an expert and update them so that they are not only correct on paper but also functional.
NIS2: Stricter Rules also for Manufacturers
The new NIS2 directive expands the cybersecurity framework and will also affect manufacturing companies.
“Slovakia already has a cybersecurity law, but NIS2 expands and tightens it – especially for critical infrastructure sectors, but also for manufacturing companies that are crucial for the functioning of the economy,” explains Karkuš.
Companies must prepare for process adjustments, strengthening technical security, and the appointment of a cybersecurity manager. New control mechanisms will also be introduced.
AI Act and Cyber Resilience Act: New Standards for Digital Products
Regulations in the field of artificial intelligence and digital resilience will bring clearer rules for manufacturers as well.
“Just as we expect a technical specification, manual, and warranty for every device, we are beginning to expect the same standards for digital products. The AI Act and CRA introduce precisely this responsibility into the digital world,” Karkuš describes.
According to him, a manufacturer who integrates new digital solutions into their processes must know exactly what they are implementing. The result should be greater transparency, quality, and protection – for both companies and their customers.
Where to Start with Digital Security?
“Stop, ‘take a breath,’ and honestly assess the current state – ideally in writing. Where are our systems, who has access, what have we documented, how are we protected,” advises Karkuš.
This step alone often uncovers fundamental shortcomings. Then it’s time for an expert who can prepare a realistic plan. “The worst thing a company can do is embark on complex projects chaotically and without a realistic goal,” he adds.
Healthcheck: Quick Orientation without Obligations
At the INOFEST festival, they will offer a free healthcheck – a quick diagnosis of the company’s readiness.
“A healthcheck is an ideal tool for quickly orienting oneself on the company’s actual state. It helps identify major shortcomings and areas where the greatest risk lies,” says Karkuš.
Based on a short questionnaire and consultation, they prepare recommendations and a proposal for steps. The advantage is its non-binding nature – the company itself decides what to address immediately and what later.
The year 2025 will bring new digital obligations for manufacturers – from GDPR through NIS2 to the AI Act and CRA. During the workshop at INOFEST, experts Nikoleta Ducárová from Top privacy, Michal Karkuš and Peter Čičala from Hronček & Partners, will show you what these rules mean in practice and how to prepare without unnecessary chaos. You will learn where companies most often make mistakes and how to minimize risks. Practical advice and a Q session await you. And what’s more – during the festival, you will receive a free healthcheck for your company.
Digital Regulations as an Opportunity
Michal Karkuš reminds that regulations do not only mean obligations, but also an opportunity to strengthen trustworthiness in the market:
“Companies that can demonstrate to their partners and clients that they are trustworthy, responsible, and prepared to face digital risks have a significantly better negotiating position. For manufacturers, this is not only an obligation but also an opportunity to strengthen their reputation and stability in the eyes of business partners and the market itself.”
TEXT: Natália Stašíková
PHOTO: Hronček partners
