CHAPTER IVCOMMON EMERGENCY COMMUNICATION AND INFORMATION SYSTEM

Article 7

A common emergency communication and information system (CECIS) is hereby established.

Article 8

The CECIS shall consist of the following three components:

  1. (a)

    a network layer, consisting of the physical network connecting the competent authorities and the contact points in the participating States and the Monitoring and Information Centre;

  2. (b)

    an application layer, consisting of the databases and other information systems necessary for the functioning of the civil protection assistance interventions and in particular those needed:

    1. (i)

      for communicating notifications,

    2. (ii)

      for ensuring communication and information sharing between the Monitoring and Information Centre and competent authorities and the contact points,

    3. (iii)

      for compiling information on serums and vaccines or other medical resources and on stocks,

    4. (iv)

      for disseminating lessons learnt from interventions;

  3. (c)

    a security layer, consisting of the set of systems, rules and procedures necessary for ensuring the confidentiality of the data stored in and exchanged via the CECIS.

Article 9

1.

The CECIS shall be set up and operate in accordance with Decision No 1719/1999/EC and Decision No 1720/1999/EC.

2.

The network layer shall be operated using the trans-European services for telematics between administrations (TESTA), an IDA generic service as set out in Article 4 of Decision No 1720/1999/EC.

3.

The application layer shall be a web-enabled multilingual database, accessible over TESTA and linked with the use of a normal SMTP e-mail application.

4.

The security layer shall be based on the use of the public key infrastructure for closed user groups (IDA PKI-CUG), an IDA generic service as set out in Article 4 of Decision No 1720/1999/EC.

Article 10

The handling of documents, databases, and information systems classified up to ‘EU RESTRICTED’ within the CECIS shall conform to the provisions set out in Council Decision 2001/264/EC10 and in Commission Decision 2001/844/EC, ECSC, Euratom11.

Documents and information classified as ‘EU CONFIDENTIAL’ or higher, shall be transmitted pursuant to special arrangements between the originator and the recipient(s).

The security classification of the CECIS shall be upgraded as appropriate.

Article 11

1.

The participating States shall submit to the Commission the appropriate information using the ‘Country card template’ set out in the F1Annex I.

2.

The participating States shall provide information on contact points in the context of civil protection and, where appropriate, of other services handling natural, technological, radiological or environmental accidents, including accidental marine pollution.

3.

The participating States shall notify the Commission of any changes to the information referred to in paragraphs 1 and 2 immediately.

Article 12

A user group consisting of representatives nominated by the participating States shall be established. It shall assist the Commission in the validation and testing of the CECIS.

Article 13

1.

A global implementation plan (GIP) for the implementation of the CECIS is hereby established. According to the GIP the Commission shall:

(a)

establish specific agreements in the context of the respective IDA framework contracts for the implementation of the network and security layers;

(b)

on the basis of an open call for tenders, establish agreements for the development and validation of the application layer as well as for the feasibility studies;

(c)

ensure that all persons involved in the development and validation phases as well as the subsequent feasibility studies are appropriately cleared to handle information classified at least ‘EU CONFIDENTIAL’ according to Decision 2001/264/EC and Commission Decision 2001/844/EC, ECSC, Euratom;

(d)

ensure the management of the project in view of the final installation of the CECIS. In this respect, the Commission shall provide and update a general plan and shall coordinate the development, validation, and implementation phases with the participating States, and the selected contractor(s). The Commission shall also take into account the needs and requirements of the participating States;

(e)

follow up, validate and test the separate layers and the completed CECIS with the help of the user group;

(f)

ensure the training of trainers and that the participating States are regularly informed of the advancement of the project;

(g)

ensure security of the project mainly by not permitting unauthorised dissemination of sensitive information;

(h)

ensure, via the Commission's Data Centre, that the server is appropriately connected to TESTA and is available on at least the same service level as the rest of the network;

(i)

ensure the implementation of the PKI through the Telecommunications Centre;

(j)

provide all the necessary support for the implementation phase of the project and ensure necessary maintenance and support thereafter.

2.

The participating States shall ensure the fulfilment of the engagements undertaken in the context of the country card template, such as connection to the TESTA II network, availability of conformant web browsers and e-mail clients and implementation of PKI procedures, in line with the approved planning.