Source: OJ L 333, 27.12.2022, p. 80–152
ENRecital 80 Standards in lieu of cybersecurity certification schemes
For the purpose of demonstrating compliance with cybersecurity means cybersecurity as defined in Article 2, point (1), of Regulation (EU) 2019/881; risk-management measures and in the absence of appropriate European cybersecurity means cybersecurity as defined in Article 2, point (1), of Regulation (EU) 2019/881; certification schemes adopted in accordance with Regulation (EU) 2019/881 of the European Parliament and of the Council (18)Regulation (EU) 2019/881 of the European Parliament and of the Council of 17 April 2019 on ENISA (the European Union Agency for Cybersecurity) and on information and communications technology cybersecurity certification and repealing Regulation (EU) No 526/2013 (Cybersecurity Act) (OJ L 151, 7.6.2019, p. 15)., Member States should, in consultation with the Cooperation Group means a group as defined in Article 2, point (11), of Directive 2013/34/EU; and the European Cybersecurity means cybersecurity as defined in Article 2, point (1), of Regulation (EU) 2019/881; Certification Group means a group as defined in Article 2, point (11), of Directive 2013/34/EU;, promote the use of relevant European and international standards means an international standard as defined in Article 2, point (1)(a), of Regulation (EU) No 1025/2012; by essential and important entities means a natural or legal person created and recognised as such under the national law of its place of establishment, which may, acting under its own name, exercise rights and be subject to obligations; or may require entities means a natural or legal person created and recognised as such under the national law of its place of establishment, which may, acting under its own name, exercise rights and be subject to obligations; to use certified ICT products means an ICT product as defined in Article 2, point (12), of Regulation (EU) 2019/881;, ICT services means digital and data services provided through ICT systems to one or more internal or external users on an ongoing basis, including hardware as a service and hardware services which includes the provision of technical support via software or firmware updates by the hardware provider, excluding traditional analogue telephone services; and ICT processes.