via aws.amazon.com => original post link
In October 2023, we briefed customers on our submission to the public consultation on the first batch of regulatory technical standards (RTSs) made under DORA. As part of our continuing engagement with regulatory authorities on the finalization of DORA, including the European Supervisory Authorities (ESAs) and National Competent Authorities (NCAs), we submitted our response to the consultation on the second batch of technical standards in early March 2024. These responses will be available on the ESAs’ website. This blog summarizes our responses to key topics that will impact AWS and our customers.
DORA, which will require compliance by 17 January 2025, introduces new regulatory requirements on how EU financial services entities work with information and communication technology (ICT) providers (including, but not limited to cloud providers). It also introduces a direct oversight regime for ICT providers designated as Critical Third-Party Providers (CTPPs). As AWS continues with our implementation efforts, our team of dedicated financial services compliance experts is supporting customers as they make the necessary changes to comply with relevant requirements ahead of January 2025. AWS customers should reach out to their account team if they would like to discuss DORA in detail and how AWS can assist them with compliance.