Beta

Source: OJ L, 2025/295, 13.2.2025

EN

Recital 5 Lead Overseer's assessment of remediation plans

For the purpose of the assessment specified in Article 42(1) of Regulation (EU) 2022/2554, according to which Lead Overseer means the European Supervisory Authority appointed in accordance with Article 31(1), point (b) of this Regulation; is obliged to evaluate whether the explanation provided by critical ICT third-party service provider means an ICT third-party service provider designated as critical in accordance with Article 31; is sufficient, the notification to the Lead Overseer means the European Supervisory Authority appointed in accordance with Article 31(1), point (b) of this Regulation; by the critical ICT third-party service provider means an ICT third-party service provider designated as critical in accordance with Article 31; of its intention to follow the recommendations received should be complemented by a description of the actions and measures that have been taken to mitigate the risks outlined in the recommendations, along with their respective deadlines. Such explanation should take the form of a remediation plan.

Table of contents

We're continuously improving our platform to serve you better.

Your feedback matters! Let us know how we can improve.

Contact us:

dora@springflod.se

Found a bug?

Springflod is a Swedish boutique consultancy firm specialising in cyber security within the financial services sector.

We offer professional services concerning information security governance, risk and compliance.

Crafted with ❤️ by Springflod