Feasibility of centralized incident reporting


The ESAsEuropean Supervisory Authority should be tasked with assessing the feasibility and conditions for a possible centralisation of ICT-related incidentmeans a single event or a series of linked events unplanned by the financial entity that compromises the security of the network and information systems, and have an adverse impact on the availability, authenticity, integrity or confidentiality of data, or on the services provided by the financial entity; reports at Union level. Such centralisation could consist of a single EU Hub for major ICT-related incidentmeans an ICT-related incident that has a high adverse impact on the network and information systems that support critical or important functions of the financial entity; reporting either directly receiving relevant reports and automatically notifying national competent authoritiesas defined in Article 46, or merely centralising relevant reports forwarded by the national competent authoritiesas defined in Article 46 and thus fulfilling a coordination role. The ESAsEuropean Supervisory Authority should be tasked with preparing, in consultation with the ECB and ENISA, a joint report exploring the feasibility of setting up a single EU Hub.