Cyber Solidarity Act

About

Recitals

Chapter I – General provisions (Art. 1-2)
Art. 1CSol - Subject-matter and objectives
Art. 2CSol - Definitions
Chapter II – The European Cybersecurity Alert System (Art. 3-9)
Art. 3CSol - Establishment of the European Cybersecurity Alert System
Art. 4CSol - National Cyber Hubs
Art. 5CSol - Cross-Border Cyber Hubs
Art. 6 CSol - Cooperation and information sharing within and between Cross-Border Cyber Hubs
Art. 7 CSol - Cooperation and information sharing with Union-level networks
Art. 8CSol - Security
Art. 9CSol - Funding of the European Cybersecurity Alert System
Chapter III – Cybersecurity Emergency Mechanism (Art. 10-20)
Art. 10 CSol - Establishment of the Cybersecurity Emergency Mechanism
Art. 11CSol - Types of action
Art. 12CSol - Coordinated preparedness testing of entities
Art. 13CSol - Other preparedness actions
Art. 14CSol - Establishment of the EU Cybersecurity Reserve
Art. 15CSol - Requests for support from the EU Cybersecurity Reserve
Art. 16CSol - Implementation of the support from the EU Cybersecurity Reserve
Art. 17CSol - Trusted managed security service providers
Art. 18CSol - Actions supporting mutual assistance
Art. 19CSol - Support to DEP-associated third countries
Art. 20CSol - Coordination with Union crisis management mechanisms
Chapter IV – European Cybersecurity Incident Review Mechanism (Art. 21)
Art. 21CSol - European Cybersecurity Incident Review Mechanism
Chapter V – Final provisions (Art. 22-26)
Art. 22CSol - Amendments to Regulation (EU) 2021/694
Art. 23CSol - Exercise of the delegation
Art. 24CSol - Committee procedure
Art. 25CSol - Evaluation and review
Art. 26CSol - Entry into force
Annexes
Art. Annex I CSol - Annex

Annexes

ANNEX
Regulation (EU) 2021/694 is amended as follows:

(1) in Annex I, the section ‘Specific Objective 3 – Cybersecurity and Trust’ is replaced by the following:

‘Specific Objective 3 – Cybersecurity and Trust

The Programme shall stimulate the reinforcement, building and acquisition of essential capacities to secure the Union’s digital economy, society and democracy by reinforcing the Union cybersecurity industrial potential and competitiveness, as well as by improving capabilities of both the private and public sectors to protect citizens and businesses from cyber threats, including by supporting the implementation of Directive (EU) 2016/1148.

Initial and, where appropriate, subsequent actions under this objective shall include:
1. Co-investment with Member States in advanced cybersecurity equipment, infrastructure and know-how that are essential to protect critical infrastructures and the Digital Single Market at large. Such co-investment could include investments in quantum facilities and data resources for cybersecurity, situational awareness in cyberspace including National Cyber Hubs and Cross-Border Cyber Hubs forming the European Cybersecurity Alert System, as well as other tools to be made available to public and private sector across Europe.
2. Scaling up existing technological capacities and networking the competence centres in Member States and making sure that those capacities respond to public sector and industry needs, including through products and services that reinforce cybersecurity and trust within the Digital Single Market.
3. Ensuring wide deployment of effective state-of-the-art cybersecurity and trust solutions across the Member States. Such deployment includes strengthening the security and safety of products, from their design to their commercialisation.
4. Support closing the cybersecurity skills gap, taking into account gender balance by, for example, aligning cybersecurity skills programmes, adapting them to specific sectorial needs and facilitating access to targeted specialised training.
5. Promoting solidarity among Member States in preparing for and responding to significant cybersecurity incidents and large-scale cybersecurity incidents through deployment of cybersecurity services across borders, including support for mutual assistance between public authorities and the establishment of a reserve of trusted managed security service providers at Union level.’;
(2) in Annex II, the section ‘Specific Objective 3 – Cybersecurity and Trust’ is replaced by the following:

‘Specific Objective 3 – Cybersecurity and Trust

3.1. The number of cybersecurity infrastructure, or tools, or both jointly procured including in the context of the European Cybersecurity Alert System
3.2. The number of users and user communities getting access to European cybersecurity facilities
3.3. The number of actions supporting preparedness for and response to cybersecurity incidents under the Cybersecurity Emergency Mechanism’.

Chapter V – Final provisions (Art. 22-26)

AI

Proposal

Final

Consumer & E-commerce

Proposal

Final

Cybersecurity

Proposal

Final

Data

Proposal

Final

Digital Privacy

Proposal

Final

Digital Services

Proposal

Final

Cyber Solidarity Act

About

Annexes