Source: OJ L, 2025/1190, 18.6.2025

Current language: EN

Annex I Content of the project charter (Article 9(2)(a))

Item of information

Information required

Person responsible for the project plan, i.e. the Control Team Lead

Name

Contact details

Testers

  • internal

  • external

  • both

Communication channels selected in accordance with Article 9(2), point (d), and Article 9(4) point (a), including:

  • email encryption to be used

  • online data rooms to be used

  • instant messaging to be used

Codename for the TLPT

If any, critical or important functions the financial entity operates in other Member States

  • list of critical or important functions operated in another Member State

  • for each critical or important function, indication of the Member State or States in which they are operated

If any, critical or important functions supported by ICT third party service providers

  • list of critical or important functions supported by ICT third-party service providers

  • for each function, identification of the ICT third party service provider

Expected deadlines for the completion of the:

  • Preparation Phase, in accordance with Article 9

yyyy-mm-dd

  • Testing Phase, in accordance with Articles 10 and 11

yyyy-mm-dd

  • Closure Phase, in accordance with Article 12

yyyy-mm-dd

  • Remediation plan in accordance with Article 13

yyyy-mm-dd

We're continuously improving our platform to serve you better.

Your feedback matters! Let us know how we can improve.

Contact us:

springlex@springflod.se

Found a bug?

Springflod is a Swedish boutique consultancy firm specialising in cyber security within the financial services sector.

We offer professional services concerning information security governance, risk and compliance.

Crafted with ❤️ by Springflod