Given the importance of international cooperation on cybersecurity, the CSIRTs should be able to participate in international cooperation networks in addition to the CSIRTs network established by this Directive. Therefore, for the purpose of carrying out their tasks, the CSIRTs and the competent authorities should be able to exchange information, including personal data, with the national computer security incident response teams or competent authorities of third countries provided that the conditions under Union data protection law for transfers of personal data to third countries, inter alia those of Article 49 of Regulation (EU) 2016/679, are met.
NIS2 Recital EN
Recital 45
Related across sources
Guidance Guidelines 2/2023 on Technical Scope of Art. 5(3) of ePrivacy Directive Guidance Version history Guidance Guidelines 10/2020 on restrictions under Article 23 GDPR Guidance Guidelines 01/2021 Guidance Guidelines 02/2024 on Article 48 GDPR Guidance Guidelines 04/2022 on the calculation of administrative fines under the GDPR