Financial entities shall have in place exit strategies for ICT services provided by ICT third-party service providers, taking into account risks that may emerge at the level of the ICT third-party service provider, in particular a possible failure, a deterioration of the quality of the ICT services provided, any business disruption due to inappropriate or failed provision of ICT services or any material risk arising in relation to the appropriate and continuous deployment of the respective ICT service.
Document defining exit strategies for ICT third-party service providers, including transition plans, data migration procedures, alternative provider arrangements, and timeline estimates as required by DORA Article 44.
exit-strategy-documentationfs-exit-strategy-statusDORA-Art44-P1strategy_datetransition_timeline_months{
"properties": {
"alternative_provider_identified": {
"type": "boolean"
},
"data_migration_tested": {
"type": "boolean"
},
"estimated_transition_cost_eur": {
"minimum": 0,
"type": "number"
},
"has_data_migration_plan": {
"type": "boolean"
},
"has_exit_strategy": {
"type": "boolean"
},
"has_transition_plan": {
"type": "boolean"
},
"provider_id": {
"minLength": 1,
"type": "string"
},
"strategy_date": {
"format": "date",
"type": "string"
},
"transition_timeline_months": {
"minimum": 0,
"type": "integer"
}
},
"required": [
"provider_id",
"strategy_date",
"has_exit_strategy",
"has_transition_plan",
"has_data_migration_plan"
],
"type": "object"
}