Skip to Primary Navigation

Skip to main content

DORA regulation outlining process for identifying critical ICT third-parties published

Graphic of Earth by little dots, binary code and line.
Photo: Getty Images

Thomas Hyrkiel

2 min read
 Click to share on Facebook (Opens in new window/tab) Click to share on Twitter (Opens in new window/tab) Click to share on LinkedIn (Opens in new window/tab) Click to share on WhatsApp (Opens in new window/tab)

It implements the specific assessment approach to be used by supervisory authorities and outlines fees payable by vendors designated as critical.

The designation of critical ICT third-party service providers in the delegated regulation follows the two step approach outlined in the Discussion Paper published in May 2023.

The intended effect of the minimum thresholds applied in Step 1 is to produce a sub-set of third party providers, whose services support critical or

The

, , , , ,