Policy paper on the scope of ICT services under DORA

FESE, jointly with AFME, EACH and FIA, have issued a joint position paper, setting out the views regarding the potential treatment of EU and non-EU regulated financial services under the Digital Operational Resilience Act (DORA).

The associations strongly urge the Commission to clarify that financial services provided by EU and non-EU firms to financial entities are not considered ‘ICT services’ under DORA. Excluding these services from DORA aligns with its goal to address the EU financial sector’s growing reliance on ICT third-party providers, like cloud computing and software solutions, without adding additional regulations for financial entities already under strict oversight within and outside the EU.