The European Banking Authority (EBA) has updated its existing ICT and security risk management guidelines in the light of the Digital Operational Resilience Act (DORA), which took effect last month on 17 January. These changes aim to simplify requirements, eliminate duplication, and provide greater legal clarity for financial institutions.
The European Supervisory Authorities (EBA, EIOPA, and ESMA – the ESAs) have published a joint report assessing the feasibility of centralising ICT-related incident reporting by financial entities, as mandated by the Digital Operational Resilience Act (DORA). The report, published on 22 January, outlines three potential models for centralisation and examines their costs, benefits, and implications.
Why does the Digital Operational Resilience Act (DORA) need to integrate the Legal Entity Identifier (LEI)? As GLEIF’s Alexandre Kech explains in a recent blog, it’s because DORA aims to tackle a critical challenge: identifying and managing the risks associated with third-party ICT providers that underpin modern financial services.
The European Supervisory Authorities (EBA, EIOPA, and ESMA) have announced a 30 April 2025 deadline for national regulators to report details of financial entities’ contracts with ICT service providers.
On 17 July, the European Supervisory Authorities (EBA, EIOPA, and ESMA) published a second batch of policy products under the Digital Operational Resilience Act (DORA).
This Tuesday the European Banking Authority (EBA) released a comprehensive technical package for version 3.5 of its reporting framework. This package includes essential specifications such as validation rules, the Data Point Model (DPM), and XBRL taxonomies, addressing various reporting requirements.
The European Supervisory Authorities (ESAs) recently announced that they have signed a multilateral Memorandum of Understanding (MoU) with the European Union Agency for Cybersecurity (ENISA).
At the end of May, the European Supervisory Authorities – EBA, EIOPA, and ESMA – published templates, technical documents, and tools for a voluntary dry-run exercise to support the Digital Operational Resilience Act (DORA).
The Digital Operational Resilience Act (DORA) continues to be an area of focus for both EU regulated firms and their service providers.
The European Supervisory Authorities (ESAs) are gearing up for the next phase of implementing the Digital Operational Resilience Act (DORA) by initiating a voluntary dry run exercise in May.
Join our Newsletter mailing list to
stay plugged in to the latest
information about XBRL around the world.
By clicking submit you agree to the XBRL International privacy policy which can be found at xbrl.org/privacy
XBRL International is a global not for profit operating in the public interest. Our purpose is to improve the accountability and transparency of business performance globally, by providing the open data exchange standard for business reporting.
