DORA readiness assessment
Gauge your digital operational resilience under DORA, and leave with your priorities.
≈ 5 minutes · no sign-up
DORA applies to EU financial entities and their critical ICT providers. Answer the 18 statements below: everything is computed in your browser, and no answer is stored.
Answer each statement based on your real situation. Your score and priorities appear instantly in your browser. Nothing is sent anywhere.
1.ICT risk-management framework
2.Incident management and reporting
3.Resilience testing
4.ICT third-party risk
5.Continuity and recovery
6.Governance and exit
Answer every statement to reveal your score.
FAQ
What is DORA?
DORA (the Digital Operational Resilience Act) is an EU regulation that harmonizes digital operational resilience for the financial sector and governs its critical ICT providers.
Who is subject to it?
EU financial entities (banks, insurers, investment firms and many more) and their critical ICT third-party providers, including non-financial vendors.
Since when does it apply?
DORA has applied since 17 January 2025.
What are the consequences?
Supervisors have sanctioning powers and remedial measures, and an EU oversight framework targets critical ICT providers. Management is accountable.
Does this assessment replace legal advice?
No. It is an indicative tool to gauge your maturity and prioritize your actions. It does not constitute legal or supervisory advice.