Commission Implementing Regulation (EU) No 184/2014 of 25 February 2014 laying down pursuant to Regulation (EU) No 1303/2013 of the European Parliament and of the Council laying down common provisions on the European Regional Development Fund, the European Social Fund, the Cohesion Fund, the European Agricultural Fund for Rural Development and the European Maritime and Fisheries Fund and laying down general provisions on the European Regional Development Fund, the European Social Fund, the Cohesion Fund and the European Maritime and Fisheries Fund, the terms and conditions applicable to the electronic data exchange system between the Member States and the Commission and adopting pursuant to Regulation (EU) No 1299/2013 of the European Parliament and of the Council on specific provisions for the support from the European Regional Development Fund to the European territorial cooperation goal, the nomenclature of the categories of intervention for support from the European Regional Development Fund under the European territorial cooperation goal

CHAPTER I

Provisions implementing Regulation (EU) No 1303/2013 with regard to the ESI Funds

ELECTRONIC DATA EXCHANGE SYSTEM

(Empowerment under Article 74(4) of Regulation (EU) No 1303/2013)

Article 1

Establishment of electronic data exchange system

The Commission shall establish an electronic data exchange system for all official exchanges of information between the Member State and the Commission.

Article 2

Content of electronic data exchange system

Article 3

Operation of SFC2014

Member States shall appoint, at national or regional level or at both national and regional levels, a person or persons responsible for managing access rights to SFC2014 who shall fulfil the following tasks:

(a) identifying users requesting access, making sure those users are employed by the organisation;

(b) informing users about their obligations to preserve the security of the system;

(c) verifying the entitlement of users to the required privilege level in relation to their tasks and their hierarchical position;

(d) requesting the termination of access rights when those access rights are no longer needed or justified;

(e) promptly reporting suspicious events that may bring prejudice to the security of the system;

(f) ensuring the continued accuracy of user identification data by reporting any changes;

(g) taking the necessary data protection and commercial confidentiality precautions in accordance with Union and national rules;

(h) informing the Commission of any changes affecting the capacity of the Member State authorities or users of SFC2014 to carry out the responsibilities referred to in paragraph 1 or their personal capacity to carry out responsibilities referred to in points (a)-(g).

Information processed through SFC2014 shall respect the protection of privacy and personal data for individuals and commercial confidentiality for legal entities in accordance with Directive 2002/58/EC of the European Parliament and of the Council (⁴), Directive 2009/136/EC of the European Parliament and of the Council (⁵), Directive 1995/46/EC of the European Parliament and of the Council (⁶) and Regulation (EC) No 45/2001.

Article 4

Characteristics of SFC2014

In order to ensure the efficient and effective electronic exchange of information, SFC2014 shall have the following characteristics:

(a) interactive forms or forms pre-filled by the system on the basis of the data already recorded in the system previously;

(b) automatic calculations, where they reduce the encoding effort of users;

(c) automatic embedded controls to verify internal consistency of transmitted data and consistency of this data with applicable rules;

(d) system generated alerts warning SFC2014 users that certain actions can or cannot be performed;

(e) online status tracking of the treatment of information entered into the system;

(f) availability of historical data in respect of all information entered for an operational programme.

Article 5

Transmission of data through SFC2014

When the electronic exchange system ceases to malfunction, the connection with that system is re-established or the cause of force majeure ceases, the party concerned shall enter without delay the information already sent in paper form also into SFC2014.

Article 6

Security of data transmitted through SFC2014

These national, regional or local IT security policies shall include:

(a) the IT security aspects of the work performed by the person or persons responsible for managing the access rights referred to in Article 3(3) of this Regulation in case of application of direct use;

(b) in case of national, regional or local computer systems connected to SFC2014, through a technical interface referred to in Article 5(1) of this Regulation the security measures for those systems allowing to be aligned with SFC2014 security requirements.

For the purposes of point (b) of the first subparagraph, the following aspects shall be covered, as appropriate:

(a) physical security;

(b) data media and access control;

(c) storage control;

(d) access and password control;

(e) monitoring;

(f) interconnection with SFC2014;

(g) communication infrastructure;

(h) human resources management prior to employment, during employment and after employment;

(i) incident management.

CHAPTER II

Provisions implementing Regulation (EU) No 1299/2013

NOMENCLATURE OF CATEGORIES OF INTERVENTION

(Empowerment under the second subparagraph of Article 8(2) of Regulation (EU) No 1299/2013)

Article 7

Categories of intervention for the European territorial cooperation goal

The nomenclature for categories of intervention referred to in the second subparagraph of Article 8(2) of Regulation (EU) No 1299/2013 is set out in the Annex to this Regulation.

CHAPTER III

FINAL PROVISION

Article 8

This Regulation shall enter into force on the day following that of its publication in the Official Journal of the European Union.

This Regulation shall be binding in its entirety and directly applicable in all Member States.

ANNEX

Nomenclature for the categories of intervention of the European Regional Development Fund under the European territorial cooperation goal

TABLE 1:  CODES FOR THE INTERVENTION FIELD DIMENSION