All regulations
European Union
DORA
The Digital Operational Resilience Act establishes uniform requirements for the security of network and information systems supporting EU financial entities — including AI and ICT third parties.
Who it applies to
- Banks, insurers, investment firms and other EU financial entities
- Critical ICT third-party providers, including AI vendors
- Cross-border financial groups operating within the EU
Core obligations
- ICT risk management framework with board accountability
- Incident classification and reporting to competent authorities
- Digital operational resilience testing including TLPT
- Manage and monitor ICT third-party risk concentrations
How Vigil24 helps
- Inventories AI and ICT third-party tools used by staff
- Identifies concentration risk and unapproved vendors
- Generates DORA-aligned third-party risk evidence
Explore other regulations
EU AI Act
Risk tiers, transparency, high-risk AI obligations.
NIST AI RMF
US risk management framework for AI.
GDPR
Personal data, lawful basis, automated decisions.
ISO 42001
AI management system standard.
FCA Consumer Duty
Fair outcomes in UK financial services.
India DPDP Act 2023
Data protection for Indian users.
Singapore Model AI Governance
Responsible AI in Singapore.
ASEAN AI Governance Guide 2024
Regional framework across 10 member states.