ART 1 Subject matter

ART 2 Scope

ART 3 Essential and important entities

ART 4 Sector-specific Union legal acts

ART 5 Minimum harmonisation

ART 6 Definitions

ART 7 National cybersecurity strategy

ART 8 Competent authorities and single points of contact

ART 9 National cyber crisis management frameworks

ART 10 Computer security incident response teams (CSIRTs)

ART 11 Requirements, technical capabilities and tasks of CSIRTs

ART 12 Coordinated vulnerability disclosure and a European vulnerability database

ART 13 Cooperation at national level

ART 14 Cooperation Group

ART 15 CSIRTs network

ART 16 European cyber crisis liaison organisation network (EU-CyCLONe)

ART 17 International cooperation

ART 18 Report on the state of cybersecurity in the Union

ART 19 Peer reviews

ART 20 Governance

ART 21 Cybersecurity risk-management measures

ART 22 Union level coordinated security risk assessments of critical supply chains

ART 23 Reporting obligations

ART 24 Use of European cybersecurity certification schemes

ART 25 Standardisation

ART 26 Jurisdiction and territoriality

ART 27 Registry of entities

ART 28 Database of domain name registration data

ART 29 Cybersecurity information-sharing arrangements

ART 30 Voluntary notification of relevant information

ART 31 General aspects concerning supervision and enforcement

ART 32 Supervisory and enforcement measures in relation to essential entities

ART 33 Supervisory and enforcement measures in relation to important entities

ART 34 General conditions for imposing administrative fines on essential and important entities

ART 35 Infringements entailing a personal data breach

ART 36 Penalties

ART 37 Mutual assistance

ART 38 Exercise of the delegation

ART 39 Committee procedure

ART 40 Review

ART 41 Transposition

ART 42 Amendment of Regulation (EU) No 910/2014

ART 43 Amendment of Directive (EU) 2018/1972

ART 44 Repeal

ART 45 Entry into force

ART 46 Addressees