Compliance Library Blog Product Sign In
EU-DORA-12-07 Requirement 12 — Backup policies and procedures, restoration and recovery procedures and methods

Securely protect backup ICT systems from unauthorized access and corruption

Description

Backup ICT systems must be securely protected from any unauthorised access or ICT corruption and allow for timely restoration of services using data and system backups as necessary.

Full Analysis & Evidence Requirements

Sign in to view the full obligation text, AI-generated applicability analysis, evidence checklists, and compliance mapping.

Sign In to View

Related Obligations

EU-DORA-12-01 Documentation

Develop and document backup policies specifying scope and frequency
EU-DORA-12-02 Documentation

Develop and document restoration and recovery procedures and methods
EU-DORA-12-03 Requirement

Set up backup systems that can be activated according to documented procedures
EU-DORA-12-04 Requirement

Ensure backup system activation does not jeopardise security or data integrity
EU-DORA-12-05 Requirement

Periodically test backup, restoration and recovery procedures
EU-DORA-12-06 Requirement

Use physically and logically segregated ICT systems for backup restoration
EU-DORA-12-08 Requirement

Enable recovery of all transactions for central counterparties
EU-DORA-12-09 Requirement

Maintain adequate resources and backup facilities for data reporting services
EU-DORA-12-10 Requirement

Maintain redundant ICT capacities (non-microenterprises)
EU-DORA-12-11 Requirement

Assess need for redundant ICT capacities (microenterprises)

Map this obligation to your AI systems

ReguLume automatically maps regulatory obligations to your system inventory, identifies compliance gaps, and generates remediation plans.

Get Started

Start your compliance assessment

Map obligations to your AI systems, identify gaps, and generate board-ready reports. Plans start at $149/mo.

Get Started