AWS designated as a critical third-party provider under EU’s DORA regulation
Security Blog
This article announces that AWS has been designated as a critical third-party provider (CTPP) under the EU's Digital Operational Resilience Act (DORA), which took effect in January 2025.
- AWS is now subject to direct joint oversight by European Banking Authority, Securities and Markets Authority, and Insurance Authority
- DORA aims to strengthen operational resilience of EU financial sector
- AWS will maintain commitment to operational resilience through oversight activities
- Financial institutions using AWS should note the active oversight relationship
- AWS provides security, resilience, and compliance features for customer control
- AWS offers DORA-specific documentation, whitepapers, and compliance guides
- Dedicated security and compliance specialists available to support financial organizations
AWS's CTPP designation formalizes its role in supporting EU financial sector resilience while subjecting the company to regulatory oversight aligned with DORA requirements.
The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.
Related articles
Apr 17
2024
2024
AWS responds to European Supervisory Authorities’ second consultation on technical standards under the Digital Operational Resilience Act (DORA)
Jan 9
2026
2026
AWS named Leader in the 2025 ISG report for Sovereign Cloud Infrastructure Services (EU)
Jul 9
2024
2024
Introducing the AWS User Guide to the Digital Operational Resilience Act (DORA)
Nov 21
2024
2024
Introducing the AWS Level 1 DORA Workbook for AWS customers regulated under DORA
The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.