EU financial firms must prepare now for new rules on critical third-party arrangements
By 
Ruth Prickett2025-12-15T18:04:00
European banks and financial institutions must prepare now for stringent new rules on third-party suppliers. A consultation on plans to introduce a regime similar to the EU’s Digital Operational Resilience Act (DORA), but focusing on critical non-ICT third-party suppliers, closed in October, and guidelines will follow shortly.
Experts at global law firm Travers Smith wrote in a legal briefing in November that the plans build significantly on the European Banking Authority’s (EBA’s) existing rules from 2019 and “will lead to an overhaul of third-party risk management with EU financial services.”
THIS IS MEMBERS-ONLY CONTENT
You are not logged in and do not have access to members-only content.
If you are already a registered user or a member, SIGN IN now.
Related articles
-
Article‘Significant’ rule changes for EU alternative investment funds set for April 16
Significant changes to rules for EU alternative investment fund managers come into force on April 16, but most still have work to do to be compliant, experts warn.
-
ArticleEU vows to reform financial single market rules to unlock growth and boost investment
Financial markets thrive on consistent rules across the widest markets. This is the thinking behind the European Commission’s package of measures intended to simplify and streamline the zone’s single market for financial services.
-
ArticleEU agrees rules to make payment providers and online platforms liable for customer fraud losses
Payment service providers operating in the EU will have to cover customers’ losses from fraud if their fraud protection regimes are inadequate or poorly implemented under new EU rules.
More from Regulatory Policy
-
ArticleU.K. listed companies must adapt to new sustainability reporting regime by 2027
Sustainability reporting rules for U.K. listed companies are set to change. The U.K. financial regulator has launched a consultation laying out its proposals, which aim to align the reporting regime with the international ISSB standards.
-
ArticleU.K. ‘buy now pay later’ regulation signals end of ‘Wild West’ fintech loans system
Firms offering “buy now, pay later” financing will become part of the regulated financial services sector in the U.K. from July 15. Compliance teams must act now to ensure they are ready to introduce rules and establish creditworthiness assessment processes, adapt systems, and change data processes before the deadline.
-
ArticleNew EU rules will force companies to come clean on pay
New rules that will be introduced this June will require companies based in the European Union (EU) to explain why some workers are paid more money for the same job and remedy any “unjustified” discrepancies.