A licensee must report to the CBB on any detection of a cyber security incident which may or have had an impact on the information assets or systems of the licensee, on the day of the occurrence of the incident. A report submitted to the CBB under this Paragraph must be made in accordance with the reporting template as provided in Appendix 1.