DORA stands for the Digital Operational Resilience Act and revolves around one thing: strengthening the digital resilience of the financial sector within the EU. This European law requires you to keep digital risks under control. As a result, the law helps you to quickly respond to disruptions and ensure continuity, together with your IT partners.
DORA applies to financial institutions, such as banks, insurers, pension funds, payment institutions, investment firms, and (critical) external ICT service providers. ANVA is not a financial institution. As a result, we are not directly subject to this law. However, as an external provider of ICT services, we are involved! DORA has an impact on your customer and therefore also on us.
DORA sets verifiable requirements for your digital resilience. These include:
Supervision of DORA legislation is the responsibility of national and European supervisory authorities, such as the AFM and DNB, depending on the type of financial institution. They assess whether organizations demonstrably manage their digital risks and comply with DORA requirements, including agreements with external IT service providers.
DORA requires agreements with IT partners that are up-to-date, transparent, and verifiable. That is why ANVA has been working with DORA-proof agreements since November 2024. This ensures that you meet all requirements and work in a demonstrably compliant manner, without any hassle in your daily processes. Commercial agreements remain unchanged, of course.
At ANVA, we believe it is important that you are always aware of the laws and regulations that affect you. That is why we have compiled a number of useful links below relating to DORA legislation.
Would you like to see the current DORA-proof agreement? Request an anonymized reading version or choose a personalized version, ready for signing.
.jpg)
