Laws, Regulations, Norms, Standards (technical/professional, commercial, ecological, occupational safety)

Legal requirements in development, programming and testing of software applications and solutions in Germany, Italy, Serbia and Spain consist of:

GDPR: Data protection and privacy in the EU.

HIPAA: Protection of healthcare information.

ISO/IEC 27001: Information security management.

ISO 9001: For handling of personal data

NIST Cybersecurity Framework: Cybersecurity risk management.

PCI DSS: Security for cardholder data.

SOX (Sarbanes-Oxley Act): Corporate accountability and financial practices.

FISMA: Security standards for federal information systems.

CIS Controls: IT security best practices.

IEEE

LOPD compliance

NIS Directive

EU Cybersecurity Act

This is a selection of legal requirements. The list does not claim to be exhaustive.