- Question ID
-
2024_7060
- Legal act
- Regulation (EU) No 2022/2554 (DORA)
- Topic
- ICT-related incidents (management / classification / reporting)
- Article
-
Recital 16
- COM Delegated or Implementing Acts/RTS/ITS/GLs/Recommendations
- Not applicable
- Article/Paragraph
-
N/A
- Name of institution / submitter
-
AFME
- Country of incorporation / residence
-
Belgium
- Type of submitter
-
Industry association
- Subject matter
-
Lex Specialis NIS2 Directive
- Question
-
Are financial entities in scope of DORA required to submit incident reports under the NIS2 Directive ahead of DORA coming into effect in January 2025?
- Background on the question
-
While the lex specialis designation will resolve duplicate reporting from January 2025, it remains unclear whether NIS reporting is due during the interim window.
- Submission date
- Rejected publishing date
-
- Rationale for rejection
-
This question has been rejected because it is considered that EBA guidance or clarification is not needed with regard to the issue that it raises. This can be the case where it is considered that the existing regulatory framework is sufficiently clear and unambiguous.
The Single Rule Book Q&A tool has been established to provide explanations and non-binding interpretations on questions relating to the practical application or implementation of the provisions of legislative acts referred to in Article 1(2) of the EBA’s founding Regulation, as well as associated delegated and implementing acts, and guidelines and recommendations, adopted under these legislative acts.
For further information on the purpose of this tool and on how to submit questions, please see “Additional background and guidance for asking questions”.
The joint ID of this Q&A is DORA094
- Status
-
Rejected question
