Digital Operational Resilience Act for Public Sector & NGOs
DORA creates a comprehensive framework for ICT risk management in the financial sector. It requires resilience testing, third-party risk management, and incident reporting.
January 17, 2025
Varies by member state (effective, proportionate, dissuasive)
Banking, Insurance, Investment Firms
What DORA means for Public Sector & NGOs
Public Sector & NGOs organisations operating in the EU must comply with DORA obligations. Below are the key requirements that apply to your sector.
- Implement ICT risk management framework
- Conduct digital operational resilience testing
- Manage third-party ICT risk
- Report major ICT-related incidents
- Share threat intelligence
Does DORA apply to your Public Sector & NGOs business?
Find out in 2 minutes with our free regulation checker.
Check now — freeRelated Resources
DORA Full Guide
Complete DORA compliance guide for all sectors
Regulation Checker
Find out which EU regulations apply to your organisation
💻 DORA for SaaS & Software
DORA requirements for SaaS & Software organisations
💳 DORA for Fintech & Financial Services
DORA requirements for Fintech & Financial Services organisations
🏥 DORA for Healthcare & MedTech
DORA requirements for Healthcare & MedTech organisations
🏭 DORA for Manufacturing & Industry
DORA requirements for Manufacturing & Industry organisations
🛒 DORA for E-commerce & Retail
DORA requirements for E-commerce & Retail organisations
Last updated:
For informational purposes only. This is not legal advice — consult qualified legal counsel.