Register of information

Preamble (Recitals 1 – 15)

Recitals

Article 1

Definitions

Article 2

Ranking of ICT third-party providers in the supply chain

Article 3

General requirements for the templates of the register of information

Article 4

Data format requirement

Article 5

Content of the register of information

Article 6

Scope of the register of information at sub-consolidated and consolidated level

Article 7

Entry into force

Article 1This ITS also includes four annexes; dora-info.eu only contains the main text. Please refer to the original source mentioned on the landing page to access the annexes. Definitions

For the purposes of this Regulation, the following definitions apply:

  1. ‘direct ICT third-party service provider’ means an ICT third-party service providermeans an undertaking providing ICT services; or ICT intra-group service providermeans an undertaking that is part of a financial group and that provides predominantly ICT services to financial entities within the same group or to financial entities belonging to the same institutional protection scheme, including to their parent undertakings, subsidiaries, branches or other entities that are under common ownership or control; that signed a contractual arrangement with:

    1. a financial entity to provide its ICT servicesmeans digital and data services provided through ICT systems to one or more internal or external users on an ongoing basis, including hardware as a service and hardware services which includes the provision of technical support via software or firmware updates by the hardware provider, excluding traditional analogue telephone services; directly to that financial entity;

    2. a financial or a non-financial entity to provide its services to other financial entitiesas defined in Article 2, points (a) to (t) within the same groupmeans a group as defined in Article 2, point (11), of Directive 2013/34/EU;;

  2. ‘ICT service supply chain’ means a sequence of contractual arrangements connected with the ICT service being provided by the direct ICT third-party service providermeans an undertaking providing ICT services; to the financial entity, starting with the direct ICT third-party service providermeans an undertaking providing ICT services; which has one or multiple other ICT third-party service providersmeans an undertaking providing ICT services; as counterparties (subcontractors);

  3. ‘rank’ means the position of an ICT third-party service providermeans an undertaking providing ICT services; in the ICT service supply chain.

Table of contents