What is the Digital Operational Resilience Act (DORA)?
With the Digital Operational Resilience Act (DORA), Regulation (EU) 2022/2554 on digital operational resilience in the financial sector, the European Union has created a financial sector-wide regulation for cybersecurity, ICT risks and digital operational resilience.
It came into force on 17 January 2025 and sets binding standards for IT security and digital resilience for financial companies. This regulation is intended to make a significant contribution to strengthening the European financial market against cyber risks and information and communication technology (ICT) incidents.
Virtually all supervised financial companies in the European financial sector are covered by DORA. This regulation brings together various requirements relating to cybersecurity, the management of ICT risks and digital operational resilience.
Liechtenstein, as a member of the EEA, is also implementing this regulation.
