RKE-Directive

Data centers are the backbone of our digital world. A failure can have massive consequences. Not just if our mail server fails. While the NIS2 Directive focuses on protection against cyberattacks and IT security, the RKE Directive addresses the physical security of the data center. It ensures that physical risks to data centers are minimized.

Data center operators must therefore ensure that their data center is prepared for these threats:

📌 Physical attacks and sabotage: e.g. protection against intrusion, vandalism or targeted attacks

📌 Natural disasters: Ensuring that floods, earthquakes or storms do not paralyze operations

📌 Power outages and technical malfunctions: Emergency power supply, redundancies for critical systems

📌 Access controls and security measures: Protection against unauthorized access through biometric scanners, surveillance systems and security personnel

Not every data center automatically falls under the RKE. Those primarily affected are:
📌 Data centers serving critical sectors (e.g. energy, banking, healthcare)

📌 Large cloud and hosting providers with essential digital services

📌 Government IT infrastructures

To be RKE-compliant, affected data centers must:
📌 Assess risks and create contingency plans

📌 Implement physical security measures (e.g. access controls, fire protection, redundancies)

📌 Document security standards and coordinate with authorities

Those who have to deal with these requirements often face many questions. We are happy to help you find solutions that not only comply with the directive but also provide long-term security and stability.