The Commission should periodically review this Directive, after consulting stakeholders, in particular with a view to determining whether it is appropriate to propose amendments in light of changes to societal, political, technological or market conditions. As part of those reviews, the Commission should assess the relevance of the size of the entities concerned, and the sectors, subsectors and types of entity referred to in the annexes to this Directive for the functioning of the economy and society in relation to cybersecurity. The Commission should assess, inter alia, whether providers, falling within the scope of this Directive, that are designated as very large online platforms within the meaning of Article 33 of Regulation (EU) 2022/2065 of the European Parliament and of the Council(24)could be identified as essential entities under this Directive.
NIS2 Recital EN
Recital 140
Related across sources
Guidance Guidelines 02/2022 on the application of Article 60 GDPR Guidance Guidelines 9/2022 on personal data breach notification under GDPR Guidance Guidelines 2/2023 on Technical Scope of Art. 5(3) of ePrivacy Directive Guidance Guidelines 8/2020 on the targeting of social media users Guidance Guidelines 1/2019 on Codes of Conduct and Monitoring Bodies under Regulation 2016/679 Guidance Guidelines 05/2022 on the use of facial recognition technology in the area of law enforcement