Search
26884 results
Introductory note
European Supervisory Authorities launch public consultation on DORA’s second batch of policy products, covering ICT-related incident reporting standards, timelines, templates, and guidelines on aggregated costs and losses from major ICT incidents, due by 17 July 2024.
Consultation paper on Joint draft RTS specifying elements related to threat led penetration tests
European Supervisory Authorities (ESAs) consult on draft Regulatory Technical Standards outlining requirements for threat-led penetration tests under DORA, covering methodology, scope, and reporting to strengthen financial sector cyber resilience by March 2024.
Consultation paper on Joint draft guidelines on the oversight cooperation and information exchange between the ESAs and the competent authorities
European Supervisory Authorities (ESAs) consult on draft joint guidelines for oversight cooperation and information exchange with competent authorities under Regulation (EU) 2022/2554, aiming to strengthen supervisory coordination and transparency by March 2024.
Consultation paper on Joint draft technical standards on major incident reporting
EBA consultation on draft technical standards under DORA for reporting major incidents and significant cyber threats, defining content, formats, timelines, and procedures for financial entities.
Consultation on Joint draft RTS on the harmonisation of conditions enabling the conduct of the oversight activities
EBA and ESAs consult on draft regulatory technical standards to harmonise conditions for oversight activities under Regulation (EU) 2022/2554, covering requirements for effective supervision and stakeholder feedback until March 2024.
Consultation paper on Joint draft Guidelines on estimation of aggregated annual costs and losses caused by major ICT-related incidents
EBA, EIOPA, and ESMA consult on joint guidelines under DORA for financial entities to estimate and report aggregated annual costs and losses from major ICT-related incidents, ensuring harmonisation, proportionality, and consistency with incident classification and reporting standards.
Consultation paper on Joint draft RTS on subcontracting ICT services supporting critical or important functions
European Supervisory Authorities consult on draft regulatory technical standards outlining requirements for financial entities assessing ICT subcontracting of critical or important functions under DORA (Regulation (EU) 2022/2554).
ESAs launch joint consultation on second batch of policy mandates under the Digital Operational Resilience Act
The European Supervisory Authorities (EBA, EIOPA and ESMA – the ESAs) launched today a public consultation on the second batch of policy mandates under the Digital Operational Resilience Act (DORA). Today’s package includes four draft regulatory technical standards (RTS), one set of draft implementing technical standards (ITS) and two sets of guidelines (GL). These policy instruments aim to ensure a consistent and harmonised legal framework in the areas of major ICT-related incident reporting, digital operational resilience testing, ICT third-party risk management and oversight over critical ICT third-party providers. The consultation runs until 4 March 2024.
Consultation on Joint draft Guidelines on estimation of aggregated annual costs and losses caused by major ICT-related incidents
Consultation on Joint draft RTS on the harmonisation of conditions enabling the conduct of the oversight activities Introductory note
Consultation on Joint draft guidelines on the oversight cooperation and information exchange between the ESAs and the competent authorities
Consultation on Joint draft RTS specifying elements related to threat led penetration tests
Consultation on Joint draft technical standards on major incident reporting
Consultation on Joint draft RTS on subcontracting ICT services supporting critical or important functions
Joint Regulatory Technical Standards on subcontracting ICT services supporting critical or important functions
Joint Regulatory Technical Standards on the harmonisation of conditions enabling the conduct of the oversight activities
Consultation paper on draft RTS on requirements for policies and procedures on conflicts of interest for issuers of ARTs under MiCAR
EBA consults on draft Regulatory Technical Standards under MiCAR, outlining requirements for issuers of asset-referenced tokens to identify, prevent, manage, and disclose conflicts of interest in policies and procedures by March 2024.
Regulatory Technical Standards on requirements for policies and procedures on conflicts of interest for issuers of asset-referenced tokens (ARTs) under MiCAR
Amending Consultation paper on draft joint Guidelines on the system established by the ESAs for the exchange of information relevant to the assessment of the fitness and propriety
EBA, EIOPA, and ESMA consult on amendments to joint guidelines for information exchange on fitness and propriety assessments of qualifying shareholders, directors, and key function holders in financial institutions, focusing on including legal persons in the scope.