EU-DORA-30-21
Requirement
30 — Key contractual provisions
Allow delegation of audit rights for microenterprises
Description
For microenterprises, the ICT third-party service provider and financial entity may agree that the financial entity's rights of access, inspection and audit can be delegated to an independent third...
Full Analysis & Evidence Requirements
Sign in to view the full obligation text, AI-generated applicability analysis, evidence checklists, and compliance mapping.
Sign In to ViewRelated Obligations
EU-DORA-30-01
Documentation
Written documentation of rights and obligations
EU-DORA-30-02
Documentation
Include clear description of ICT services and functions
EU-DORA-30-03
Transparency
Specify service locations and data processing locations
EU-DORA-30-04
Data Governance
Include data protection provisions
EU-DORA-30-05
Data Governance
Include data access and recovery provisions
EU-DORA-30-06
Documentation
Include service level descriptions
EU-DORA-30-07
Requirement
Include ICT incident assistance obligation
EU-DORA-30-08
Requirement
Include cooperation obligation with authorities
EU-DORA-30-09
Requirement
Include termination rights and notice periods
EU-DORA-30-10
Requirement
Include security training participation conditions
Map this obligation to your AI systems
ReguLume automatically maps regulatory obligations to your system inventory, identifies compliance gaps, and generates remediation plans.
Get Started