GBIC interpretation of the DORA constellation

‘ICT service as part of a regulated financial service’

German Banking Industry Committee Regulierung Europe

Diana Campar

The German Banking Industry Committee (GBIC) has prepared an interpretation of the DORA constellation ‘ICT service as part of a regulated financial service’. The background to the paper is the Q&A of the European Supervisory Authorities (EBA, ESMA, EIOPA) of 22 January 2025, which provides the EU Commission's clarification on this constellation. The GBIC interpretation highlights the specific regulatory implications for financial companies. Essentially, with regard to regulated financial ICT services, the DORA requirements for third-party risk management do not apply, while the MaRisk requirements continue to apply.

GBIC interpretation of the DORA constellation

PDF

27.03.2025

Download

Contact

Diana Campar

Banking Technology and Security

This might also interest you:

Comments

26th of March 2025

GBIC comments to amendments of delegated acts

In response to the European Commission’s consultation on its proposed changes to the delegated acts of the EU Taxonomy the German Banking Industry Committee (GBIC) issued a statement.

Comments

21st of March 2025

GBIC statement on the secure display of transaction data with the FIDO2 standard

Extending the specification to include a standardized interface for these functions is essential.

Comments

19th of March 2025

Trilogue negotiations on a framework for Financial Data Access (FiDA) Regulation

GBIC Comments

The German Banking Industry is calling for a critical review and significant adjustments to be made to key points.