EU law recital

Recital 23

This page is part of LegalViz.EU, a tool that helps readers move through EU legislation more quickly and understand its structure.

Navigate this law: Law overview · Articles · Annexes

Previous recital · Next recital · Start with Article 1

Where a sector-specific Union legal act contains provisions requiring essential or important entities to adopt cybersecurity risk-management measures or to notify significant incidents, and where those requirements are at least equivalent in effect to the obligations laid down in this Directive, those provisions, including on supervision and enforcement, should apply to such entities. If a sector-specific Union legal act does not cover all entities in a specific sector falling within the scope of this Directive, the relevant provisions of this Directive should continue to apply to the entities not covered by that act.