CELEX:32024R2145R(01)

This corrigendum, published on 11 May 2026, corrects technical errors in the original Digital Operational Resilience Act (DORA) Delegated Regulation 2024/2145. The changes are limited to fixing inaccuracies in the text, such as cross-references and definitions, rather than introducing new substantive requirements. The corrigendum ensures the legal text is consistent and enforceable as originally intended.

The correction affects all financial entities already subject to DORA, including banks, investment firms, payment institutions, insurance companies, and critical ICT third-party service providers. No new sectors or organizations are added; the corrigendum simply clarifies obligations for those already in scope.

Compliance teams should immediately review the corrected text to ensure their internal policies, contracts, and reporting templates align with the revised wording. Pay particular attention to any corrected definitions or cross-references that may impact your ICT risk management framework or third-party oversight processes. No new implementation deadlines apply, but updating your compliance documentation now will prevent future audit discrepancies.