Art. 22 Supervisory feedback | DORA regulation |

1. Without prejudice to the technical input, advice or remedies and subsequent follow-up which may be provided, where applicable, in accordance with national law, by the CSIRTscomputer security incident response teams under Directive (EU) 2022/2555, the competent authorityas defined in Article 46 shall, upon receipt of the initial notification and of each report as referred to in Article 19(4), acknowledge receipt and may, where feasible, provide in a timely manner relevant and proportionate feedback or high-level guidance to the financial entity means a natural or legal person created and recognised as such under the national law of its place of establishment, which may, acting under its own name, exercise rights and be subject to obligations;, in particular by making available any relevant anonymised information and intelligence on similar threats, and may discuss remedies applied at the level of the financial entity means a natural or legal person created and recognised as such under the national law of its place of establishment, which may, acting under its own name, exercise rights and be subject to obligations; and ways to minimise and mitigate adverse impact across the financial sector. Without prejudice to the supervisory feedback received, financial entitiesas defined in Article 2, points (a) to (t) shall remain fully responsible for the handling and for consequences of the ICT-related incidents means a single event or a series of linked events unplanned by the financial entity that compromises the security of the network and information systems, and have an adverse impact on the availability, authenticity, integrity or confidentiality of data, or on the services provided by the financial entity; reported pursuant to Article 19(1).
1. The ESAsEuropean Supervisory Authority shall, through the Joint Committee means the committee referred to in Article 54 of Regulations (EU) No 1093/2010, (EU) No 1094/2010 and (EU) No 1095/2010;, on an anonymised and aggregated basis, report yearly on major ICT-related incidents means an ICT-related incident that has a high adverse impact on the network and information systems that support critical or important functions of the financial entity;, the details of which shall be provided by competent authoritiesas defined in Article 46 in accordance with Article 19(6), setting out at least the number of major ICT-related incidents means an ICT-related incident that has a high adverse impact on the network and information systems that support critical or important functions of the financial entity;, their nature and their impact on the operations of financial entitiesas defined in Article 2, points (a) to (t) or clients, remedial actions taken and costs incurred.
2. The ESAsEuropean Supervisory Authority shall issue warnings and produce high-level statistics to support ICT threat and vulnerability means a weakness, susceptibility or flaw of ICT products or ICT services that can be exploited by a cyber threat; assessments.