> ## Documentation Index
> Fetch the complete documentation index at: https://docs.law4devs.eu/llms.txt
> Use this file to discover all available pages before exploring further.

# Digital Operational Resilience Act (DORA)

> Regulation (EU) 2022/2554 on digital operational resilience for the financial sector.

## Overview

| Field        | Value                                                                                          |
| ------------ | ---------------------------------------------------------------------------------------------- |
| **CELEX**    | 32022R2554                                                                                     |
| **Status**   | Active                                                                                         |
| **Articles** | 64                                                                                             |
| **Recitals** | 106                                                                                            |
| **EUR-Lex**  | [View Official Text](https://eur-lex.europa.eu/legal-content/EN/TXT/PDF/?uri=CELEX:32022R2554) |

## Compliance Deadlines

| Date       | Type             | Description                          |
| ---------- | ---------------- | ------------------------------------ |
| 2023-01-16 | Entry into force | Regulation enters into force         |
| 2025-01-17 | Full application | Full application of all requirements |

## Stakeholder Roles

DORA defines obligations for the following stakeholder roles:

* **manufacturer** - ICT service providers and tool developers
* **importer** - Entities importing ICT services into the EU
* **distributor** - Financial entities using ICT services
* **authorized\_representative** - EU representatives for third-country providers
* **notified\_body** - Oversight bodies for critical ICT providers
* **market\_surveillance** - Competent authorities and ESAs
* **consumer** - Financial service end users

## Requirement Types

Requirements in DORA are classified as:

* **obligation** - Mandatory ICT risk management requirements
* **prohibition** - Restricted practices and dependencies
* **right** - Rights of financial entities and users
* **procedure** - Incident reporting and testing procedures
* **general** - General provisions and definitions

## API Usage

```bash theme={null}
# Get all DORA articles
curl https://api.law4devs.eu/v1/frameworks/dora/articles

# Get DORA framework details
curl https://api.law4devs.eu/v1/frameworks/dora

# Get DORA requirements
curl https://api.law4devs.eu/v1/frameworks/dora/requirements

# Get DORA recitals
curl https://api.law4devs.eu/v1/frameworks/dora/recitals
```

```python theme={null}
# Python SDK
from law4devs import Law4Devs

client = Law4Devs(api_key="your-api-key")

# List all DORA articles
articles = client.articles.list("dora")

# Get DORA requirements by stakeholder role
requirements = client.requirements.list("dora", role="manufacturer")

# Search DORA articles by tag
articles = client.articles.search("dora", query="ICT risk")
```

```typescript theme={null}
// TypeScript SDK
import { Law4Devs } from '@law4devs/sdk';

const client = new Law4Devs({ apiKey: 'your-api-key' });

// List all DORA articles
const articles = await client.articles.list('dora');

// Get DORA requirements by stakeholder role
const requirements = await client.requirements.list('dora', { role: 'manufacturer' });
```

## Key Topics

* ICT risk management framework
* ICT-related incident reporting
* Digital operational resilience testing
* ICT third-party risk management
* Information and intelligence sharing
* Critical ICT third-party provider oversight
