At the point in time fixed in the framework directive on IT security (1 March), all departments that have notified IT processes are requested to up-date the notified data (notification of change).
A notification of change must be effected by
confirmation of unchanged operation, or
up-date of process description, or
notification of discontinuation of the IT process.
The form of the notification of change depends, first, on the dimension and complexity of the IT process, and, second on the extent of the change. The following list contains the typical features of many notifications of change. If any of the stated facts does not apply in a specific case, the corresponding item may be omitted in the notification of change, and any facts not stated herein must be added if necessary.