Beta

Source: OJ L 333, 27.12.2022, p. 80–152

EN

Recital 94 Supervision of trust service providers

Member States can assign the role of the competent authoritiesas defined in Article 46 for trust services means a trust service as defined in Article 3, point (16), of Regulation (EU) No 910/2014; to the supervisory bodies under Regulation (EU) No 910/2014 in order to ensure the continuation of current practices and to build on the knowledge and experience gained in the application of that Regulation. In such a case, the competent authoritiesas defined in Article 46 under this Directive should cooperate closely and in a timely manner with those supervisory bodies by exchanging relevant information in order to ensure effective supervision and compliance of trust service providers means a trust service provider as defined in Article 3, point (19), of Regulation (EU) No 910/2014; with the requirements laid down in this Directive and in Regulation (EU) No 910/2014. Where applicable, the CSIRT or the competent authorityas defined in Article 46 under this Directive should immediately inform the supervisory body under Regulation (EU) No 910/2014 about any notified significant cyber threat means a cyber threat which, based on its technical characteristics, can be assumed to have the potential to have a severe impact on the network and information systems of an entity or the users of the entity’s services by causing considerable material or non-material damage; or incident means an incident as defined in Article 6, point (6), of Directive (EU) 2022/2555; affecting trust services means a trust service as defined in Article 3, point (16), of Regulation (EU) No 910/2014; as well as about any infringements by a trust service provider means a trust service provider as defined in Article 3, point (19), of Regulation (EU) No 910/2014; of this Directive. For the purpose of reporting, Member States can, where applicable, use the single entry point established to achieve a common and automatic incident means an incident as defined in Article 6, point (6), of Directive (EU) 2022/2555; reporting to both the supervisory body under Regulation (EU) No 910/2014 and the CSIRT or the competent authorityas defined in Article 46 under this Directive.

Table of contents

We're continuously improving our platform to serve you better.

Your feedback matters! Let us know how we can improve.

Contact us:

dora@springflod.se

Found a bug?

Springflod is a Swedish boutique consultancy firm specialising in cyber security within the financial services sector.

We offer professional services concerning information security governance, risk and compliance.

Crafted with ❤️ by Springflod