On November 15, 2024, the European Supervisory Authorities (EBA, EIOPA, ESMA) set April 30, 2025, as the deadline for competent authorities
to submit their annual DORA "register of information" reports. These registers will document financial entities' contractual arrangements
with ICT third-party service providers (CTPPs), focusing on identifying critical providers operating in the EU.

  • The ESAs outlined timelines, reporting frequency, submission procedures, data quality standards, and confidentiality measures.
  • Competent authorities must collect information from financial entities and submit it by the deadline.
  • A workshop for financial entities is scheduled for December 18, 2024, to guide the preparation of registers and share insights from a dry run exercise.

Although the EU Commission has yet to formally adopt the related ITS, financial entities are encouraged to prepare their registers proactively. The ESAs stress the importance of designating CTPPs to ensure robust oversight and compliance.

Prepare for the DORA register of information

Related financial regulatory news:

DORA - EBA opinion on rejection of DRAFT ITS

Subscribe to our newsletter with updates on financial regulations

Back To Top