Art. 25 Reporting and review | CER directive | CER

This article establishes the Commission's reporting obligations to the European Parliament and Council.

It sets out two distinct reporting duties: an initial compliance check on Member States, followed by ongoing periodic reviews of the Directive's overall functioning and effectiveness.

The periodic review element is notably forward-looking, as it explicitly includes assessing whether the Annex to the Directive — which defines the sectors in scope — should be modified.

Important points:

The Commission is required to submit an initial report by 17 July 2027 assessing Member State compliance with the Directive.
The Commission is required to conduct periodic reviews, with the first full review report due by 17 June 2029, covering the Directive's added value and its impact on the resilience of critical entities.
The Critical Entities Resilience Group's documents must be taken into account by the Commission when preparing these reports.

By 17 July 2027, the Commission shall submit to the European Parliament and to the Council a report assessing the extent to which each Member State has taken the necessary measures to comply with this Directive.
The Commission shall periodically review the functioning of this Directive and report to the European Parliament and to the Council. That report shall, in particular, assess the added value of this Directive, its impact on ensuring the resilience of critical entities and whether the Annex to this Directive should be modified. The Commission shall submit the first such report by 17 June 2029. For the purpose of reporting under this Article, the Commission shall take into account relevant documents of the Critical Entities Resilience Group.