Source: OJ L 333, 27.12.2022, p. 80–152
ENRecital 102 Early warning, incident notification and final report
Where essential or important entitiesas defined in Article 3 of Directive (EU) 2022/2555 become aware of a significant incident means an incident as defined in Article 6, point (6), of Directive (EU) 2022/2555;, they should be required to submit an early warning without undue delay and in any event within 24 hours. That early warning should be followed by an incident means an incident as defined in Article 6, point (6), of Directive (EU) 2022/2555; notification. The entities means a natural or legal person created and recognised as such under the national law of its place of establishment, which may, acting under its own name, exercise rights and be subject to obligations; concerned should submit an incident means an incident as defined in Article 6, point (6), of Directive (EU) 2022/2555; notification without undue delay and in any event within 72 hours of becoming aware of the significant incident means an incident as defined in Article 6, point (6), of Directive (EU) 2022/2555;, with the aim, in particular, of updating information submitted through the early warning and indicating an initial assessment of the significant incident means an incident as defined in Article 6, point (6), of Directive (EU) 2022/2555;, including its severity and impact, as well as indicators of compromise, where available. A final report should be submitted not later than one month after the incident means an incident as defined in Article 6, point (6), of Directive (EU) 2022/2555; notification. The early warning should only include the information necessary to make the CSIRT, or where applicable the competent authorityas defined in Article 46, aware of the significant incident means an incident as defined in Article 6, point (6), of Directive (EU) 2022/2555; and allow the entity means a natural or legal person created and recognised as such under the national law of its place of establishment, which may, acting under its own name, exercise rights and be subject to obligations; concerned to seek assistance, if required. Such early warning, where applicable, should indicate whether the significant incident means an incident as defined in Article 6, point (6), of Directive (EU) 2022/2555; is suspected of being caused by unlawful or malicious acts, and whether it is likely to have a cross-border impact. Member States should ensure that the obligation to submit that early warning, or the subsequent incident means an incident as defined in Article 6, point (6), of Directive (EU) 2022/2555; notification, does not divert the notifying entity means a natural or legal person created and recognised as such under the national law of its place of establishment, which may, acting under its own name, exercise rights and be subject to obligations;’s resources from activities related to incident handling means any actions and procedures aiming to prevent, detect, analyse, and contain or to respond to and recover from an incident; that should be prioritised, in order to prevent incident means an incident as defined in Article 6, point (6), of Directive (EU) 2022/2555; reporting obligations from either diverting resources from significant incident means an incident as defined in Article 6, point (6), of Directive (EU) 2022/2555; response handling or otherwise compromising the entity means a natural or legal person created and recognised as such under the national law of its place of establishment, which may, acting under its own name, exercise rights and be subject to obligations;’s efforts in that respect. In the event of an ongoing incident means an incident as defined in Article 6, point (6), of Directive (EU) 2022/2555; at the time of the submission of the final report, Member States should ensure that entities means a natural or legal person created and recognised as such under the national law of its place of establishment, which may, acting under its own name, exercise rights and be subject to obligations; concerned provide a progress report at that time, and a final report within one month of their handling of the significant incident means an incident as defined in Article 6, point (6), of Directive (EU) 2022/2555;.