- CHAPTER I: General provisions
- CHAPTER II: ICT risk management
- Section: I
- Section: 2
- CHAPTER III: ICT-related incident management, classification and reporting
- CHAPTER IV: Digital operational resilience testing
- CHAPTER V: Managing of ICT third-party risk
- Section I: Key principles for a sound management of ICT third-party risk
- Section II: Oversight Framework of critical ICT third-party service providers
- CHAPTER VI: Information-sharing arrangements
- CHAPTER VII: Competent authorities
- CHAPTER VIII: Delegated acts
- CHAPTER IX: Transitional and final provisions
- Section I: Section I
- Section II: Amendments