‘ annual traffic volume ’ means the total number of passengers arriving, departing and in transit (counted once);

‘ appropriate authority ’ means the national authority designated by a Member State pursuant to Article 9 to be responsible for the coordination and monitoring of the implementation of its national civil aviation security programme;

‘ auditor ’ means any person conducting national compliance monitoring activities on behalf of the appropriate authority;

‘ certification ’ means a formal evaluation and confirmation by or on behalf of the appropriate authority that a person possesses the necessary competencies to perform the functions of an auditor to an acceptable level as defined by the appropriate authority;

‘ compliance monitoring activities ’ means any procedure or process used for assessing the implementation of this Regulation and the national aviation security programme;

‘ deficiency ’ means a failure to comply with an aviation security requirement;

‘ inspection ’ means an examination of the implementation of security measures and procedures in order to determine whether they are being carried out effectively and to the required standard and to identify any deficiencies;

‘ interview ’ means an oral check by an auditor to establish whether specific security measures or procedures are implemented;

‘ observation ’ means a visual check by an auditor that a security measure or procedure is implemented;

‘ representative sample ’ means a selection made from amongst possible options for monitoring which is sufficient in number and range to provide a basis for general conclusions on implementing standards;

‘ security audit ’ means an in-depth examination of security measures and procedures in order to determine if they are being fully implemented on a continual basis;

‘ test ’ means a trial of aviation security measures, where the appropriate authority simulates intent to commit an act of unlawful interference for the purpose of examining the effectiveness of the implementation of existing security measures;

‘ verification ’ means an action taken by an auditor to establish whether a specific security measure is actually in place;

‘ vulnerability ’ means any weakness in the implemented measures and procedures which could be exploited to carry out an act of unlawful interference.]