DORA Legislation

DORA EU Legislation

Regulation (EU) 2022/2554 of the European Parliament and of the Council of 14 December 2022 on digital operational resilience for the financial sector and amending Regulations (EC) No 1060/2009, (EU) No 648/2012, (EU) No 600/2014, (EU) No 909/2014 and (EU) 2016/1011 (Digital and Operational Resilience Act’)

Regulatory Technical Standards

Regulatory Technical Standards (RTS) on ICT risk management framework and on simplified ICT risk management framework

RTS on criteria for the classification of ICT-related incidents

RTS to specify the policy on ICT services supporting critical or important functions provided by ICT third-party service providers (TPPs)

Implementing Technical Standards (ITS) to establish the templates for the register of information

RTS and ITS on the content, format, templates and timelines for reporting major ICT-related incidents and significant cyber threats

RTS on the harmonization of conditions enabling the conduct of the oversight activities

RTS specifying the criteria for determining the composition of the joint examination team (JET)

RTS on threat-led penetration testing (TLPT)

Joint Regulatory Technical Standards on subcontracting ICT services supporting critical or important functions

DORA Maltese Legislation

Malta Financial Services Authority Act (Digital Operational Resilience Act (DORA)) Regulations, 2024

Data Reporting Services (Amendment) Regulations, 2024

Stay updated with our latest insights

Explore Insights

Telecoms, Media & Technology

The AI Act’s Impact on Businesses Operating Within the EU

This article is part of our EU AI Act series which explores the effect of the AI Act across various industries and sectors. Introduction The first article (see link below) in this EU AI Act series provided, inter alia, a breakdown of the scope, applicability, timeline and risk levels of the AI Act, Regulation (EU) 2024/1689 (hereinafter referred to as the “Act”). The Act introduces significant obligations for all businesses developing or deploying AI that affect persons in the EU, with major fines for non-compliance. Crucially, the Act is extraterritorial in nature, since it also applies to businesses established in…

Telecoms, Media & Technology

The EU AI Act: A General Overview

This article is part of our EU AI Act series which explores the effect of the AI Act across various industries and sectors. Overview & Applicability Timeline The Artificial Intelligence Act (“AI Act” or “Regulation”), officially Regulation (EU) 2024/1689, is a groundbreaking legislative framework designed to address the benefits and risks of AI technologies. Since AI is becoming ubiquitously integrated into various industries, the AI Act aims to ensure that these technologies are deployed safely, ethically, and transparently by establishing rules for AI Systems throughout the European Union (“EU”). The AI Act entered into force across the EU, including Malta,…

DORA

Status of DORA Regulatory Technical Standards (“RTS”)

Regulation (EU) 2022/2554 of the European Parliament and of the Council of 14 December 2022 on digital operational resilience for the financial sector ( “DORA”) establishes the EU legislative framework for enhancing digital resilience within the EU’s financial industry. Enforcement commences on 17th January 2025 and the EU Commission is tasked with issuing Regulatory Technical Standards (“RTS”) which supplement DORA. The EU Commission publishes the RTS in the Official Journal as Commission Delegated Regulations, but they are largely based on the input of the European Supervisory Authorities (“ESA”) which comprise of ESMA, EBA and EIOPA. The draft RTS submitted to the European…

DORA

Malta’s Draft Order Transposing the EU NIS 2 Directive Now Open for Public Consultation

Data Protection and Privacy

DORA: An Overview of the Maltese Legal Provisions

Banking & Finance

Six Months Until DORA: Mamo TCV Advocates Launches Detailed Overview

Join our mailing list

Get in touch by sending us a message or by contacting us directly.