The Digital Operational Resilience Act [DORA] for Financial Services

The DORA regulation applies from 17th January 2025

learn more

Due to their dependency on technology, financial service companies are increasingly vulnerable to operational disruption and data loss , including cloud platforms and business applications. 

To reduce these risks and to improve operational resilience, the EU enacted the Digital Operational Resilience Act (DORA).

DORA requires backups to be stored outside of your primary SaaS application to ensure that they remain insulated from issues affecting the primary data.

In addition, DORA also requires testing the ability to restore and recover from a backup.

dora with star and blue pattern

Countdown to DORA: Part 1 & 2 - ICT Risk Management & Live Demo

Prepare for DORA compliance with our webinar-style demos. Learn about DORA for ICT risk management and governance. Watch now to see live solutions in action and get ready for January and beyond.

I currently use:

By clicking "Submit", you consent to OwnBackup's use of your personal data in accordance with OwnBackup's Privacy Policy.

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

helpful RESOURCES

eBook

DORA Compliance and SaaS: A Guide For Financial Services

To reduce the associated risks and improve the operational resilience of the financial sector, the EU recently enacted the new Digital Operational Resilience Act (DORA).
blog

The DORA Quest: Beware of Vendors with Magic Beans

Matthew O'Neill
dATA SHEET

DORA and SaaS Data Protection

Learn how to reduce risk and return to business faster with Own solutions for DORA compliance.

When restoring backup data using own systems, financial entities shall use ICT systems that are physically and logically segregated from the source ICT system. The ICT systems shall be securely protected from any unauthorized access or ICT corruption and allow for the timely restoration of services making use of data and system backups as necessary.

Article 12, Digital Operational Resilience Act

LEARN more from industry THOUGHT leaders

logo

With offices in 151 countries and more than 364,000 people, we are among the leading professional services networks in the world.

logo

Deloitte is a leading global provider of audit and assurance, consulting, financial advisory, risk advisory, tax, and related services.

KPMG Logo

KPMG is also one of the leading auditing and advisory firms in Germany and has more than 14,000 employees at 27 locations.

logo

A podcast for curious minds in the financial services industry. Hosts, Matthew O’Neill and Brian Hayes, explore the challenges of life in Financial Services.

our customers

logologologologologo
logo
logologo
logo
Own solutions help customers satisfy these legislative requirements for their critical SaaS data and continuously improve their SaaS data security and resiliency, as well as provide documentary-evidence supporting compliance reporting.
eBook

Shared Responsibility Playbook

You might assume that if it’s in the cloud, it’s protected. But for most SaaS apps there is a shared responsibility for keeping data safe. Learn more about the shared responsibility model and how you can start protecting your data.
eBook

How Independent Backup Helps Mitigate the Impact of SaaS Data Loss

Learn why it's critical to keep your backups separate from your primary data and how to tell if your backup solution is independent.
blog

23 NYCRR 500: How Financial Institutions and Insurers Can Accelerate Compliance for SaaS Data

Eoghan Casey
blog

The Growing Importance of Backup and Recovery Compliance

Mike Melone
blog

NYDFS Emphasizes Data Protection and Business Continuity in Updated 23 NYCRR 500 Cybersecurity Regulation

Own and PwC

Get started

Share your details and we’ll contact you shortly to schedule a custom 25-minute demo.

Schedule a Demo