ART 1 Subject matter and scope

ART 2 Definitions

ART 3 Mandate

ART 4 Objectives

ART 5 Development and implementation of Union policy and law

ART 6 Capacity-building

ART 7 Operational cooperation at Union level

ART 8 Market, cybersecurity certification, and standardisation

ART 9 Knowledge and information

ART 10 Awareness-raising and education

ART 11 Research and innovation

ART 12 International cooperation

ART 13 Structure of ENISA

ART 14 Composition of the Management Board

ART 15 Functions of the Management Board

ART 16 Chairperson of the Management Board

ART 17 Meetings of the Management Board

ART 18 Voting rules of the Management Board

ART 19 Executive Board

ART 20 Duties of the Executive Director

ART 21 ENISA Advisory Group

ART 22 Stakeholder Cybersecurity Certification Group

ART 23 National Liaison Officers Network

ART 24 Single programming document

ART 25 Declaration of interests

ART 26 Transparency

ART 27 Confidentiality

ART 28 Access to documents

ART 29 Establishment of ENISA’s budget

ART 30 Structure of ENISA’s budget

ART 31 Implementation of ENISA’s budget

ART 32 Financial rules

ART 33 Combating fraud

ART 34 General provisions

ART 35 Privileges and immunity

ART 36 Executive Director

ART 37 Seconded national experts and other staff

ART 38 Legal status of ENISA

ART 39 Liability of ENISA

ART 40 Language arrangements

ART 41 Protection of personal data

ART 42 Cooperation with third countries and international organisations

ART 43 Security rules on the protection of sensitive non-classified information and classified information

ART 44 Headquarters Agreement and operating conditions

ART 45 Administrative control

ART 46 European cybersecurity certification framework

ART 47 The Union rolling work programme for European cybersecurity certification

ART 48 Request for a European cybersecurity certification scheme

ART 49 Preparation, adoption and review of a European cybersecurity certification scheme

ART 50 Website on European cybersecurity certification schemes

ART 51 Security objectives of European cybersecurity certification schemes

ART 52 Assurance levels of European cybersecurity certification schemes

ART 53 Conformity self-assessment

ART 54 Elements of European cybersecurity certification schemes

ART 55 Supplementary cybersecurity information for certified ICT products, ICT services and ICT processes

ART 56 Cybersecurity certification

ART 57 National cybersecurity certification schemes and certificates

ART 58 National cybersecurity certification authorities

ART 59 Peer review

ART 60 Conformity assessment bodies

ART 61 Notification

ART 62 European Cybersecurity Certification Group

ART 63 Right to lodge a complaint

ART 64 Right to an effective judicial remedy

ART 65 Penalties

ART 66 Committee procedure

ART 67 Evaluation and review

ART 68 Repeal and succession

ART 69 Entry into force