Cyber-Offense Legislation: Does the nation have a Cybercrime Law compliant with the Budapest Convention? Are there specific penalties for infrastructure sabotage?

Data Protection Law: Is there a national data privacy law (similar to GDPR) protecting citizen PII?

Critical Infrastructure Protection (CIP): Are critical sectors (Telco, Energy, Finance) legally required to report security breaches?

National CIRT/CERT: Does the nation have an operational National Computer Incident Response Team (CIRT)? Is the CIRT recognized by itu-d SG2 as an active participant in regional drills?

National Cybersecurity Strategy (NCS): Is there a formal NCS document approved by the highest level of government?

Child Online Protection (COP): Are there technical and policy protections for children online (as per SG2 Q2/2)?

Global Cybersecurity Index (GCI): Does the nation participate in the biennial GCI survey? Audit the current GCI pillar scores (Legal, Technical, Org, Capacity, Coop).

Inter-Agency Coordination: Is there a formal mechanism for law enforcement and technical teams to coordinate during a cyber-crisis?