ESAs Publish First List of Critical ICT Third-Party Providers Under DORA

The European Supervisory Authorities (the ESAs) have published the first list of critical ICT third-party providers (CTPPs) designated under the Digital Operational Resilience Act (DORA).

This marks a key step in rolling out the DORA oversight framework, following a multi-stage assessment based on financial-entity registers, cross-sector criticality analysis and providers’ right to be heard. The designation covers major ICT providers delivering core infrastructure, cloud, data and business services across the EU financial sector.

Designated CTPPs include Google Cloud, Microsoft, Amazon Web Services and other.

The full list of designated CTPPs is available on the ESAs’ website.

See All News Here

Related News

Swedish Supreme Court Adds Nuance to Previous Ruling on Bulk Requests for Court Judgments and Decisions

NIS2 and the Swedish Regulation Jungle

EU Commission Proposes Tech Sovereignty Package with New Rules for Chips, Cloud Services and AI infrastructure