§ DORA · Article 4
DORA Article 4: Obligations, Deadlines & Penalties
At a glance
Article 4 of the DORA imposes 3 obligations on competent authorities, financial entities.
§ Obligations
All obligations under Article 4
Obligation 1
Financial entities shall implement the rules laid down in Chapter II in accordance with the principle of proportionality, taking into account their size and overall risk profile, and the nature, scale and complexity of their services, activities and operations.
Regulation (EU) 2022/2554, Article 4, Article 4
- Obligated entity
-
financial entities
- Sector scope
- financial sector
- Action required
-
implement
- Deadline
-
—
- Penalty
-
—
Obligation 2
Financial entities shall apply Chapters III, IV and V, Section I, proportionately to their size and overall risk profile, and to the nature, scale and complexity of their services, activities and operations, as specifically provided for in the relevant rules of those Chapters.
Regulation (EU) 2022/2554, Article 4, Article 4
- Obligated entity
-
financial entities
- Sector scope
- financial sector
- Action required
-
apply
- Deadline
-
—
- Penalty
-
—
Obligation 3
Competent authorities shall consider the application of the proportionality principle by financial entities when reviewing the consistency of the ICT risk management framework on the basis of reports submitted pursuant to Article 6(5) and Article 16(2).
Regulation (EU) 2022/2554, Article 4, Article 4
- Obligated entity
-
competent authorities
- Action required
-
consider
- Deadline
-
—
- Penalty
-
—
§ Frequently asked
Questions about Article 4
Who must comply with Article 4 of the DORA?
+
competent authorities, financial entities.
What does Article 4 of the DORA require?
+
implement apply consider