Skip to main content

DORA Legislation

EU Legislation
Maltese Legislation
Return to main DORA page

DORA EU Legislation

Regulation (EU) 2022/2554 of the European Parliament and of the Council of 14 December 2022 on digital operational resilience for the financial sector and amending Regulations (EC) No 1060/2009, (EU) No 648/2012, (EU) No 600/2014, (EU) No 909/2014 and (EU) 2016/1011 (Digital and Operational Resilience Act’)
Regulatory Technical Standards
Regulatory Technical Standards (RTS) on ICT risk management framework and on simplified ICT risk management framework
RTS on criteria for the classification of ICT-related incidents
RTS to specify the policy on ICT services supporting critical or important functions provided by ICT third-party service providers (TPPs)
Implementing Technical Standards (ITS) to establish the templates for the register of information
RTS and ITS on the content, format, templates and timelines for reporting major ICT-related incidents and significant cyber threats
RTS on the harmonization of conditions enabling the conduct of the oversight activities
RTS specifying the criteria for determining the composition of the joint examination team (JET)
RTS on threat-led penetration testing (TLPT)
Joint Regulatory Technical Standards on subcontracting ICT services supporting critical or important functions

DORA Maltese Legislation

Malta Financial Services Authority Act (Digital Operational Resilience Act (DORA)) Regulations, 2024
Data Reporting Services (Amendment) Regulations, 2024

Stay updated with our latest insights

Explore Insights
St James Cavalier Web Dome
DORA

DORA is Now in Force: What’s Next?

Regulation (EU) 2022/2554 of the European Parliament and of the Council of 14 December 2022 on digital operational resilience for the financial sector (“DORA” or the “Act”) became enforceable as of 17th January 2025. DORA Resources As highlighted in various DORA insights by our Firm over the last few months (including a very useful overview of DORA itself), DORA represents a significant milestone in aligning the financial services sector with the EU’s digital finance strategy, offering a regulatory framework for operational resilience and ICT risk management. Designed to bolster operational resilience against increasingly sophisticated cyber threats, DORA ushers in a new era…
European Blockchain Sandbox
FinTech

European Blockchain Sandbox & MDIA Joint Webinar

As previously announced, applications for the third and final cohort of the European Blockchain Sandbox are now open. To find out more on how you can take advantage of this unique scheme, register here to attend this joint webinar being organised by the European Blockchain Sandbox and the Malta Digital Innovation Authority (MDIA) on January 20th at 14:30. The webinar is expected to last around an hour.
AI Act’s Impact on Businesses Operating Within the EU
Telecoms, Media & Technology

The AI Act’s Impact on Businesses Operating Within the EU

This article is part of our EU AI Act series which explores the effect of the AI Act across various industries and sectors. Introduction The first article (see link below) in this EU AI Act series provided, inter alia, a breakdown of the scope, applicability, timeline and risk levels of the AI Act, Regulation (EU) 2024/1689 (hereinafter referred to as the “Act”). The Act introduces significant obligations for all businesses developing or deploying AI that affect persons in the EU, with major fines for non-compliance. Crucially, the Act is extraterritorial in nature, since it also applies to businesses established in…
The EU AI Act
Telecoms, Media & Technology
The EU AI Act: A General Overview
Key representing digital resilience
DORA
Status of DORA Regulatory Technical Standards (“RTS”)
Security Sign
DORA
Malta’s Draft Order Transposing the EU NIS 2 Directive Now Open for Public Consultation

Join our mailing list

Get in touch by sending us a message or by contacting us directly.