EU-DORA-30-14
Requirement
30 — Key contractual provisions
Obligate participation in TLPT
Description
For critical or important functions, contracts must include the obligation of the ICT third-party service provider to participate and fully cooperate in the financial entity's threat-led penetration...
Full Analysis & Evidence Requirements
Sign in to view the full obligation text, AI-generated applicability analysis, evidence checklists, and compliance mapping.
Sign In to ViewRelated Obligations
EU-DORA-30-01
Documentation
Written documentation of rights and obligations
EU-DORA-30-02
Documentation
Include clear description of ICT services and functions
EU-DORA-30-03
Transparency
Specify service locations and data processing locations
EU-DORA-30-04
Data Governance
Include data protection provisions
EU-DORA-30-05
Data Governance
Include data access and recovery provisions
EU-DORA-30-06
Documentation
Include service level descriptions
EU-DORA-30-07
Requirement
Include ICT incident assistance obligation
EU-DORA-30-08
Requirement
Include cooperation obligation with authorities
EU-DORA-30-09
Requirement
Include termination rights and notice periods
EU-DORA-30-10
Requirement
Include security training participation conditions
Map this obligation to your AI systems
ReguLume automatically maps regulatory obligations to your system inventory, identifies compliance gaps, and generates remediation plans.
Get Started