On 17 January 2025, the Regulation on digital operational resilience for the financial sector (DORA) is implemented. The Regulation includes security requirements to mitigate the risks arising from the digital finance sector due to the emergence of decentralised finance. Furthermore, the Regulation requires information and communications technology (ICT) third-party providers from countries outside the European Union and delivering critical services to financial entities to open a subsidiary in the EU in order for the authorities to ensure compliance with the security requirements.
Original source