Changeflow GovPing Insurance Regulation EU and UK Authorities MoU on DORA ICT Provider ...
Routine Notice Added Final

EU and UK Authorities MoU on DORA ICT Provider Oversight

Favicon for www.eiopa.europa.eu EIOPA Publications
Published January 14th, 2026
Detected February 11th, 2026
Email

Summary

The European Supervisory Authorities (ESAs) and the Bank of England, PRA, and FCA have signed a Memorandum of Understanding to enhance cooperation on overseeing critical ICT third-party service providers under DORA. This agreement facilitates joint oversight and equivalence assessments between EU and UK authorities.

View original document View source feed page

What changed

The European Supervisory Authorities (EBA, EIOPA, ESMA) and UK authorities (Bank of England, PRA, FCA) have signed a Memorandum of Understanding (MoU) to formalize cooperation on the oversight of critical ICT third-party service providers (CTPPs) as mandated by the Digital Operational Resilience Act (DORA). This agreement establishes a framework for information sharing and joint assessments, particularly concerning CTPPs that are significant for both EU and UK financial sectors.

This MoU is primarily an administrative and cooperation agreement between regulatory bodies, not imposing direct new obligations on regulated entities. However, it signals a coordinated approach to managing risks associated with critical ICT providers operating across the EU and UK. Financial institutions should be aware that oversight of their key ICT service providers will be subject to this enhanced cross-border collaboration, potentially leading to more harmonized supervisory expectations regarding DORA compliance for these providers.

Source document (simplified)

Details

Publication date 14 January 2026

Description

The European Supervisory Authorities (EBA, EIOPA and ESMA – the ESAs) have today signed a Memorandum of Understanding (MoU) with the Bank of England (BoE), the Prudential Regulation Authority (PRA), and the Financial Conduct Authority (FCA). This agreement enhances the cooperation between the authorities to oversee critical ICT third-party service providers (CTPPs) as required by the Digital Operational Resilience Act (DORA).

Files

  • 14 JANUARY 2026 MoU DORA oversight ICT CTPPs between EU-UK.pdf English (367.43 KB - PDF) Download
  • 14 JANUARY 2026 DORA oversight - Joint ESAs targeted equivalence assessments.pdf English (188.09 KB - PDF) Download Share this page

Related changes

Favicon for www.consilium.europa.eu Media Advisory: Foreign Affairs Council Meeting
Routine Mar 14, 2026 EU Council Sanctions Press Releases Trade & Export
Favicon for www.consilium.europa.eu EU Council Forward Look: March 16-29, 2026
Routine Mar 14, 2026 EU Council Sanctions Press Releases Trade & Export
Favicon for www.consilium.europa.eu President António Costa's Weekly Schedule
Routine Mar 14, 2026 EU Council Sanctions Press Releases Trade & Export
Favicon for wid.cert-bund.de CPython Vulnerabilities Allow Remote Code Execution
Priority review Mar 13, 2026 CERT-Bund Security Advisories Vulnerability Alerts
Favicon for wid.cert-bund.de Vim Vulnerability Allows Code Execution (CVSS 6.6)
Priority review Mar 13, 2026 CERT-Bund Security Advisories Vulnerability Alerts
Favicon for wid.cert-bund.de FreeRDP Vulnerabilities - Remote Code Execution
Priority review Mar 13, 2026 CERT-Bund Security Advisories Vulnerability Alerts

Source

Favicon for www.eiopa.europa.eu
EIOPA Publications eiopa.europa.eu/publications_en
Insurance Regulation
Analysis generated by AI. Source diff and links are from the original.

Classification

Agency
Various EU Institutions
Published
January 14th, 2026
Instrument
Notice
Legal weight
Non-binding
Stage
Final
Change scope
Minor

Who this affects

Applies to
Financial advisers Fund managers Insurers
Geographic scope
EU-UK

Taxonomy

Primary area
Cybersecurity
Operational domain
Compliance
Topics
Third-Party Risk Management International Cooperation

Browse Categories

Federal Courts 26 State Courts 91 Securities Regulation 6 Financial Regulation 43 Consumer Protection 5 Drug Safety 45 Data Protection 21 Competition 2 Attorneys General 3 Insurance Regulation 5 Trade & Export 36 Legislation 42 Energy Regulation 13 Environment 3 Labor & Employment 2 Tax 1

Get Insurance Regulation alerts

Weekly digest. AI-summarized, no noise.

Free. Unsubscribe anytime.

Get alerts for this source

We'll email you when EIOPA Publications publishes new changes.

Free. Unsubscribe anytime.