Particle.news
Download on the App Store
3 ARTICLES
·
4h ago

EU Names 19 Critical Tech Providers Under DORA, Launches Direct Oversight

The move triggers direct EU supervision of key technology vendors that underpin essential financial services across the bloc.

Amazon logo is seen in this illustration created on February 11, 2025. REUTERS/Dado Ruvic/Illustration/File Photo
The Google logo is seen on the Google house at CES 2024, an annual consumer electronics trade show, in Las Vegas, Nevada, U.S. January 10, 2024. REUTERS/Steve Marcus/File Photo

Overview

  • The European Supervisory Authorities published the first list of designated critical ICT third‑party providers, marking the start of active DORA oversight.
  • Designees include Amazon Web Services, Google Cloud, Microsoft, Bloomberg, IBM, London Stock Exchange Group, Orange and Tata Consultancy Services.
  • Supervisors will test risk management and governance and can mandate audits, incident reporting and onsite inspections of the named providers.
  • The designations followed DORA’s formal process using financial firms’ Registers of Information, EU‑wide criticality assessments, notifications and a right to be heard.
  • LSEG and Google Cloud welcomed the move, Microsoft pledged compliance, AWS said it was prepared to engage, and EU financial firms are expected to adjust sourcing and third‑party risk arrangements as the UK pursues a similar regime without final designations yet.