News & Analysis as of

European Union Data Security Financial Services Industry

The European Union is an economic and political partnership comprised of 27 nations within the Eurozone. The EU was established in 1948 to promote stability and cooperation among member states in the aftermath of... more +
The European Union is an economic and political partnership comprised of 27 nations within the Eurozone. The EU was established in 1948 to promote stability and cooperation among member states in the aftermath of WWII. The EU maintains a common currency as well as several intranational institutions, including the European Parliament and the European Commission. less -
Integreon

DORA Compliance Part 2: Addressing Compliance Across Critical Operational Areas

Integreon on

Introduction to DORA and its Implications - As of Jan.17, 2025, the European Union’s Digital Operational Resilience Act (DORA) became enforceable. This new regulatory framework significantly impacts financial institutions and...more

A&O Shearman

EU DORA technical standards published

A&O Shearman on

Two delegated acts were published in the Official Journal of the European Union (OJ) in respect of the EU Digital Operational Resilience Act (DORA). These are: - Commission Delegated Regulation (EU) 2025/301, which comprises...more

A&O Shearman

European Central Bank updates TIBER-EU framework to align with DORA RTS on TLPT

A&O Shearman on

The European Central Bank (ECB) has published an updated version of the threat intelligence-based ethical red teaming framework (TIBER-EU framework) (dated January) to align with the Digital Operational Resilience Act (DORA)...more

A&O Shearman

European Commission adopts Delegated Regulation on RTS on threat-led penetration testing under DORA

A&O Shearman on

The European Commission (EC) has adopted a Commission Delegated Regulation supplementing the Digital Operational Resilience Act (DORA) with regard to RTS specifying the criteria used for identifying financial entities...more

Hogan Lovells

European Supervisory Authorities published a roadmap to designate critical ICT third-party service providers under the Digital...

Hogan Lovells on

The European Supervisory Authorities (“ESAs”) published a roadmap to designate critical ICT third-party service providers (“CTPPs”) under the Digital Operational Resilience Act (“DORA”). To designate an ICT third-party...more

Hogan Lovells

European Commission confirms that financial services are not ICT services for DORA purposes

Hogan Lovells on

Firms involved in implementing changes to comply with new rules under the EU Digital Operational Resilience Act (DORA) have questioned whether financial services provided by other regulated firms may fall within the...more

A&O Shearman

EU joint report on the feasibility for further centralization of reporting of major ICT-related incidents

A&O Shearman on

The European Supervisory Authorities have published a joint report on the feasibility of further centralization of the reporting of major ICT-related incidents by financial entities to competent authorities. The ESAs' joint...more

Cadwalader, Wickersham & Taft LLP

DORA Now in Force in the EU

Cadwalader, Wickersham & Taft LLP on

Regulation (EU) 2022/2554 on digital operational resilience for the financial sector (“DORA”), which establishes a uniform set of requirements relating to the security of network and information systems supporting financial...more

Mayer Brown

Cybersecurity in the Financial Sector: EU’s Digital Operational Resilience Act Takes Effect

Mayer Brown on

Beginning 17 January 2025, the Digital Operational Resilience Act (DORA) will apply to almost all EU financial entities, including banks, insurers and reinsurers, brokers , payment and electronic money institutions,...more

Skadden, Arps, Slate, Meagher & Flom LLP

Political Changes Are Unlikely To Fundamentally Alter Key Sanctions

Skadden, Arps, Slate, Meagher & Flom LLP on

Key Points - - Political transitions in the West notwithstanding, we expect economic sanctions to remain a key response to geopolitical issues. - Current sanctions policy priorities are unlikely to shift markedly in...more

DLA Piper

DORA: Navigating the New Era of Digital Operational Resilience in EU Financial Services

DLA Piper on

It’s DORA day! The EU financial services sector has been anticipating today since the Digital Operational Resilience Act was published in December 2022. DORA brings a significant shift to the sector in terms of how financial...more

Walkers

Navigating DORA: Key compliance steps from 17 January 2025

Walkers on

DORA is now applicable, imposing requirements in respect of ICT risk management and digital operational resilience. Firms should be preparing their register of information ready for sharing with the CBI in April....more

Faegre Drinker Biddle & Reath LLP

EU Digital Operational Resilience Act Priorities for 2025

Faegre Drinker Biddle & Reath LLP on

Background - The Digital Operational Resilience Act (DORA), a European Union (EU) regulation that is set to transform how financial entities and their information technology (IT) service providers manage operational risks,...more

Venable LLP

Offensive Security Under the EU Digital Operational Resilience Act (DORA)

Venable LLP on

The Digital Operational Resilience Act (DORA) regulation is part of the European Union’s (EU) strategy to enhance the overall stability of the EU financial system by ensuring that financial entities are resilient to digital...more

Pillsbury Winthrop Shaw Pittman LLP

Upcoming EU Rules on Digital Operational Resilience

Pillsbury Winthrop Shaw Pittman LLP on

There will be additional compliance obligations and mandatory contractual provisions introduced for financial entities and outsourced IT service providers. The new DORA seeks to strengthen the resilience of financial...more

Wilson Sonsini Goodrich & Rosati

European Commission Proposes New Rules on Financial Data Access and Use

Wilson Sonsini Goodrich & Rosati on

On June 28, 2023, the European Commission (EC) published a Proposal for a Regulation on Financial Data Access (FIDA). FIDA aims to create a framework through which data holders (e.g., banks, credit institutions) share the...more

Orrick, Herrington & Sutcliffe LLP

EU says EU-US Data Privacy Framework lacks adequate protections

Orrick, Herrington & Sutcliffe LLP on

On February 14, the European Parliament’s Committee on Civil Liberties, Justice and Home Affairs released a draft motion for a resolution concerning the adequacy of protections afforded under the EU-US Data Privacy Framework....more

Orrick, Herrington & Sutcliffe LLP

5 Things You Need to Know About DORA

Orrick, Herrington & Sutcliffe LLP on

On 10 November 2022, the European Parliament approved two significant pieces of cybersecurity legislation: The Network and Information Security 2 Directive (“NIS2”); and The Digital Operational Resilience Act (“DORA”)....more

Latham & Watkins LLP

10 Key Focus Areas for UK-Regulated Financial Services Firms in 2021

Latham & Watkins LLP on

In last year’s publication we highlighted the top regulatory focus areas for our clients during 2020, concentrating on wholesale market structures and conduct risk. This publication outlines the primary focus areas in...more

Akin Gump Strauss Hauer & Feld LLP

In Principle: 10 Things Authorised Firms Need to Know for 2020

Akin Gump Strauss Hauer & Feld LLP on

Welcome to the 2020 edition of In Principle. With the United Kingdom (UK) leaving the European Union (EU) on31 January 2020, and moving into a transition period which will last until 31 December 2020, Brexit of courselooms...more

Akin Gump Strauss Hauer & Feld LLP

In Principle - 10 Things Authorised Firms Need To Know For 2019

Akin Gump Strauss Hauer & Feld LLP on

In the 2018 edition of this publication, we ended the introduction with the line, “We can only hope that we will enter 2019 with greater certainty than 2018 as to how the regulatory landscape will look.” Unfortunately,...more

Alston & Bird

The Digital Download - Alston & Bird’s Privacy & Data Security Newsletter – November 2016

Alston & Bird on

Updates on the EU: German DPA Publishes First Privacy Shield Guidelines, Requires German-Law Contracts for Transfers. On June 7, 2016, the European Commission adopted the EU-U.S. Privacy Shield. One question that many...more

Morrison & Foerster LLP

FinTech Focus: New European Directive on Payment Services (PSD2) Comes into Force

Morrison & Foerster LLP on

On 12 January 2016, the long-awaited revised Payment Services Directive (“PSD2”) came into force in Europe. This replaces the Payment Services Directive (“PSD”) that has been in place since 2007. The deadline for EU member...more

23 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide