What is this?
This is an original copy from the Digital Operational Resilience Act (DORA) is a European Union (EU) regulation that aims to strengthen the resilience and security of information and communications technology (ICT) in the financial sector. DORA came into force on January 16, 2023 and it is applicable since January 17, 2025.
This is an original copy from the Digital Operational Resilience Act (DORA) is a European Union (EU) regulation that aims to strengthen the resilience and security of information and communications technology (ICT) in the financial sector. DORA came into force on January 16, 2023 and it is applicable since January 17, 2025.
The regulation establishes:
- Requirements for managing ICT risks
- Mechanisms for monitoring financial entities
- A new framework for supervising ICT suppliers
- Prohibition of hiring ICT companies that do not comply with technical standards
DORA applies to:
- Financial entities such as banks, insurance companies and investment companies
- ICT service providers of these financial entities
DORA is made up of:
- Regulation (EU) No. 2022/2554 of the European Parliament and of the Council of 14 December 2022
- Directives (EU) No. 2022/2555, 2022/2556 and 2022/2557 of the European Parliament and of the Council, of December 14, 2022