icon-grid
Better Regulation logo
Table of Contents

Table of Contents

Expand all headings Collapse all headings Expand side bar Collapse side bar
Proposal for a Regulation of the European Parliament and of the Council amending Regulation (EU) 2019/881 as regards managed security services (COM(2023) 208 final / 2023/0108 (COD)) (updated 15 November 2024 with Information Note - Outcome of the European Parliament's first reading and Corrigendum procedure (Strasbourg, 24 April 2024 and Brussels, 14 November 2024))Explanatory Memorandum1. Context of the Proposal2. Legal Basis, Subsidiarity and Proportionality3. Results of Ex Post Evaluations, Stakeholder Consultations and Impact Assessments4. Budgetary Implications5. Other ElementsProposal for a 2023/0108 (COD) REGULATION OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL amending Regulation (EU) 2019/881 as regards managed security services (Text with EEA relevance)RecitalsArticle 1 Amendments to Regulation (EU) 2019/881Article 2Done at
Document Overview
Tools
Set a date to view the document
Text comparison options
Full text - Date 1 vs Date 2
Amendments requiring commencement - Current text vs Text requiring commencement
Draft proposed changes - Current text vs Text proposed by drafting documents
Coming soon: Any documents - Any document vs Another document at any date
Print / Export options
Current page
Whole document
Selected pages
Consolidated PDF of the entire document as of 27th December 2024
Export
Export line by line
Export provision to provision
Report template
Create report template
Alert me to changes
Manage alerts
Bookmarks
This page
This document
Manage bookmarks
Search within this document
View previous searches
Share
Get page link
Share via email application
PreviousNext
Version status: Published
Version date: 18 April 2023 - onwards

2. Legal Basis, Subsidiarity and Proportionality

• Legal basis

This proposal amends the Cybersecurity Act, which is based on Article 114 of the Treaty on the functioning of the European Union (TFEU). As in the case of the Cybersecurity Act, this proposal aims to avoid fragmentation of the internal market, namely by enabling the adoption of European cybersecurity certification schemes for managed security services. Member States have started to adopt national certification schemes for managed security services. There is thus a concrete risk of fragmentation of the internal market for these services, which the present proposal aims to address. Therefore, Article 114 TFEU is the relevant legal basis for this initiative.

• Subsidiarity (for non-exclusive competence)

The objective of enabling the adoption of European cybersecurity certification schemes for managed security and avoiding fragmentation of the internal market cannot be achieved at national level but only at Union level. Furthermore, managed security services, which are the targeted subject of the proposed amendment, are offered by providers active across the Union, as are their largest potential customers. Action at Union level is therefore both necessary and more effective than action at national level.

• Proportionality

PreviousNext