🇬🇷Ελλάδα

Digital Operational Resilience Act Compliance in Greece

DORA creates a comprehensive framework for ICT risk management in the financial sector. It requires resilience testing, third-party risk management, and incident reporting.

How does DORA apply in Greece?

DORA applies in Greece under EU law with the same obligations as across the bloc — maximum fine Varies by member state (effective, proportionate, dissuasive). The national supervisory authority is the HDPA (Hellenic Data Protection Authority), which handles enforcement, complaints, and notifications. Deadline: January 17, 2025.

Supervisory authority: HDPA (Hellenic Data Protection Authority)
Maximum fine: Varies by member state (effective, proportionate, dissuasive)
Key deadline: January 17, 2025

Supervisory authority	HDPA (Hellenic Data Protection Authority)
Maximum fine	Varies by member state (effective, proportionate, dissuasive)
Key deadline	January 17, 2025
Sectors affected	Banking, Insurance

Source: HDPA (Hellenic Data Protection Authority)Reviewed: 2026-05-11

Deadline

January 17, 2025

Max Fine

Varies by member state (effective, proportionate, dissuasive)

Sectors Affected

Banking, Insurance, Investment Firms

Key DORA Obligations for Greece Businesses

Implement ICT risk management framework
Conduct digital operational resilience testing
Manage third-party ICT risk
Report major ICT-related incidents
Share threat intelligence

Does DORA apply to your Greece business?

Find out in 2 minutes with our free regulation checker.

Check now — free

View full DORA compliance guide

For informational purposes only. This is not legal advice — consult qualified legal counsel.

Digital Operational Resilience Act Compliance in Greece

How does DORA apply in Greece?

Key DORA Obligations for Greece Businesses

Does DORA apply to your Greece business?

DORA in Other Countries