DORA
Digital operational resilience act
ICT risk management
ICT-related incident management
Digital operational resilience testing
Third-party risk management
Critical ICT third-party service providers
Subcontracting ICT services
Preamble (Recitals 1 – 19)
Recitals
Article 1
Overall risk profile and complexity
Article 2
Group application
Article 3
Due diligence and risk assessment regarding the use of subcontractors supporting critical or important functions
Article 4
Description and conditions under which ICT services supporting a critical or important function may be subcontracted
Article 5
Conditions for subcontracting relating to the chain of ICT subcontractors providing a service supporting a critical or important function by the financial entity
Article 6
Material changes to subcontracting arrangements of ICT service supporting critical or important functions
Article 7
Termination of the contractual arrangement
Article 8
Entry into force