Understanding DORA: a guide for financial entities and ICT service providers

BCLP has produced an brochure to guide financial entities and ICT service providers on compliance with the EU’s Digital Operational Resilience Act (DORA), which is designed to help financial entities strengthen their operational resilience and mitigate the potential impacts from digital disruptions. The DORA imposes obligations on both financial entities and certain ICT service providers to adopt operational practices and contractual measures that support resilience across their operations. The DORA took effect from 17 January 2025 and is currently subject to enforcement by the European Supervisory Authorities.

How We Can Support You

Our brochure outlines the ways our Operational Resilience Practice can support your business needs, inclusive of compliance and training, and navigate these obligations, including:

1. understanding how the DORA works
2. understanding whether you are affected by the DORA
3. understanding who might be designated as a Critical Third Party and when this designation will be done
4. best practices and strategies for financial entities and ICT service providers
5. understanding and implementing contractual requirements

For more information on how we can support you and your business, please contact our Operational Resilience Practice for an initial conversation on the specific ways we may be able to assist you in meeting your legal obligations under the DORA.

View the brochure >