🇩🇰Danmark
Digital Operational Resilience Act Compliance in Denmark
DORA creates a comprehensive framework for ICT risk management in the financial sector. It requires resilience testing, third-party risk management, and incident reporting.
How does DORA apply in Denmark?
DORA applies in Denmark under EU law with the same obligations as across the bloc — maximum fine Varies by member state (effective, proportionate, dissuasive). The national supervisory authority is the Datatilsynet, which handles enforcement, complaints, and notifications. Deadline: January 17, 2025.
- Supervisory authority: Datatilsynet
- Maximum fine: Varies by member state (effective, proportionate, dissuasive)
- Key deadline: January 17, 2025
| Supervisory authority | Datatilsynet |
| Maximum fine | Varies by member state (effective, proportionate, dissuasive) |
| Key deadline | January 17, 2025 |
| Sectors affected | Banking, Insurance |
Source: DatatilsynetReviewed:
Deadline
January 17, 2025
Max Fine
Varies by member state (effective, proportionate, dissuasive)
Sectors Affected
Banking, Insurance, Investment Firms
Key DORA Obligations for Denmark Businesses
- Implement ICT risk management framework
- Conduct digital operational resilience testing
- Manage third-party ICT risk
- Report major ICT-related incidents
- Share threat intelligence
Does DORA apply to your Denmark business?
Find out in 2 minutes with our free regulation checker.
Check now — freeDORA in Other Countries
For informational purposes only. This is not legal advice — consult qualified legal counsel.