In 2015-16 we started a cybersecurity strategy in Slovenia. We gathered IT experts from public administration to prepare a Strategy on Cyber Security. It is a readable document that is a compromise of everything: what we want to achieve, how much resources we need and what will be our path. The strategy changes every 2-3 years and now we are going to update it again. The EU has requested us to implement the Directive on network and informational security (NIST) in Slovenian legislation in 2019. Slovenia also was obliged to use the GDPR rules (protection of personal data) and started to work on Law was a compromise between the privacy and security.