In case a financial entity outsources a function or activity to a service provider, and this service provider makes use of ICT servicesdigital and data services provided through ICT systems to one or more internal or external users on an ongoing basis, including hardware as a service and hardware services which includes the provision of technical support via software or firmware updates by the hardware provider, excluding traditional analogue telephone services to support this function or activity, the responsibility for ensuring the operational resilience of that function or activity remains with the financial entity. Therefore, for the purpose of the register of information, the service provider should be treated as a direct ICT third-party service provideran undertaking providing ICT services. In the case where a financial entity or a management entity acting on behalf of the financial entity, outsources all its activity to a service provider, the ICT third-party service providersan undertaking providing ICT services to that service provider should be treated as a direct ICT third-party service provideran undertaking providing ICT services of the financial entity or of the management entity, respectively.