Beta

Source: OJ L, 2025/302, 20.2.2025

EN

Recital 7 Incidents concerning ICT third-party service providers

To identify easily the impact of an incident means an incident as defined in Article 6, point (6), of Directive (EU) 2022/2555; that occurred at, or was caused by a third-party provider, and that affects multiple financial entitiesas defined in Article 2, points (a) to (t) within a single Member State, and to reduce the reporting effort for financial entitiesas defined in Article 2, points (a) to (t), the reporting template should allow for the submission of an aggregated report covering aggregated information about the impact of the incident means an incident as defined in Article 6, point (6), of Directive (EU) 2022/2555; on all impacted financial entitiesas defined in Article 2, points (a) to (t) that have classified the incident means an incident as defined in Article 6, point (6), of Directive (EU) 2022/2555; as major.

Table of contents

We're continuously improving our platform to serve you better.

Your feedback matters! Let us know how we can improve.

Contact us:

dora@springflod.se

Found a bug?

Springflod is a Swedish boutique consultancy firm specialising in cyber security within the financial services sector.

We offer professional services concerning information security governance, risk and compliance.

Crafted with ❤️ by Springflod