Source: OJ L, 2025/302, 20.2.2025
EN
ITS on templates for incident reporting
Commission Implementing Regulation (EU) 2025/302
of 23 October 2024
laying down implementing technical standards for the application of Regulation (EU) 2022/2554 of the European Parliament and of the Council
with regard to the standard forms, templates, and procedures for financial entities to report a major ICT-related incident and to notify a significant cyber threat
Table of contents
Preamble
1 – 12Recitals- Article 1Template for reporting ICT-related major incidents
- Article 2Joint submission of initial notification, intermediate and final reports
- Article 3Recurring ICT-related incidents
- Article 4Use of secure electronic channels
- Article 5Reclassification of major ICT-related incidents
- Article 6Notification of outsourcing of the reporting obligations
- Article 7Aggregated reporting
- Article 8Notification of significant cyber threats
- Article 9Entry into force
Articles