7.1 Prior to the finalisation of the annual oversight plan referred to in Article 33(4) of the DORA, the Lead Overseer should make available the draft annual oversight plan to the competent authorities of the financial entities using the ICT services provided by a critical ICT third-party service provider.
7.2 The draft annual oversight plan should include the following information on the envisaged general investigations or inspections:
a) type of oversight activity (general investigation or inspection);
b) high-level scope and objectives;
c) approximate timeframe.
7.3 Competent authorities may provide comments on the draft annual oversight plan within 30 working days following the receipt thereof.
7.4 Within 10 working days following the adoption, the Lead Overseer should make available to the competent authorities, the annual oversight plan and the multi-annual oversight plan [See Recital 3 of draft Regulatory Technical Standards on the conduct of oversight activities in relation to
…