keyboard_tab Cyber Resilience Act 2023/2841 EN
BG CS DA DE EL EN ES ET FI FR GA HR HU IT LV LT MT NL PL PT RO SK SL SV print pdf
- Art. 1 Subject matter
- Art. 2 Scope
- Art. 3 Definitions
- Art. 4 Processing of personal data
- Art. 5 Implementation of measures
- Art. 6 Cybersecurity risk-management, governance and control framework
- Art. 7 Cybersecurity maturity assessments
- Art. 8 Cybersecurity risk-management measures
- Art. 9 Cybersecurity plans
- Art. 10 Interinstitutional Cybersecurity Board
- Art. 11 Tasks of the IICB
- Art. 12 Compliance
- Art. 13 CERT-EU mission and tasks
- Art. 14 Guidelines, recommendations and calls for action
- Art. 15 Head of CERT-EU
- Art. 16 Financial and staffing matters
- Art. 17 Cooperation of CERT-EU with Member State counterparts
- Art. 18 Cooperation of CERT-EU with other counterparts
- Art. 19 Information handling
- Art. 20 Cybersecurity information-sharing arrangements
- Art. 21 Reporting obligations
- Art. 22 Incident response coordination and cooperation
- Art. 23 Management of major incidents
- Art. 24 Initial budgetary reallocation
- Art. 25 Review
- Article 26 Entry into force
CHAPTER I
GENERAL PROVISIONS
CHAPTER II
MEASURES FOR A HIGH COMMON LEVEL OF CYBERSECURITY
CHAPTER III
INTERINSTITUTIONAL CYBERSECURITY BOARD
CHAPTER IV
CERT-EU
CHAPTER V
COOPERATION AND REPORTING OBLIGATIONS
CHAPTER VI
FINAL PROVISIONS
- Union entities
- network and information system
- security of network and information systems
- cybersecurity
- highest level of management
- near miss
- incident
- major incident
- large-scale cybersecurity incident
- incident handling
- cyber threat
- significant cyber threat
- vulnerability
- cybersecurity risk
- cloud computing service
- information 3
- union_entities 3
- cert-eu 3
- shall 3
- article 2
- obligation 2
- applicable 2
- documents 2
- handling 2
- comply 1
- the 1
- concerns 1
- request 1
- access 1
- states 1
- rules 1
- member 1
- relevant 1
- consult 1
- regulation 1
- under 1
- including 1
- held 1
- whenever 1
- apply 1
- public 1
- equivalent 1
- 1
- respect 1
- professional 1
- secrecy 1
- accordance 1
- tfeu 1
- frameworks 1
- requests 1
- regulation 1
- no / 1
- european 1
- parliament 1
- council 1
- regard 1
- security 1
Article 19
Information handling
1. Union_entities and CERT-EU shall respect the obligation of professional secrecy in accordance with Article 339 TFEU or equivalent applicable frameworks.
2. Regulation (EC) No 1049/2001 of the European Parliament and of the Council (10) shall apply with regard to requests for public access to documents held by CERT-EU, including the obligation under that Regulation to consult other Union_entities or, where relevant, Member States, whenever a request concerns their documents.
3. The handling of information by Union_entities and CERT-EU shall comply with the applicable rules on information security.
whereas