1. Article 30(2)a) of DORA requires from financial entities that: "the contractual arrangements on the use of ICT services shall include at least the following elements […] a clear and complete description of all functions and ICT services to be provided by the ICT third-party service provider, indicating whether subcontracting of an ICT service supporting a critical or important function, or material parts thereof, is permitted and, when that is the case, the conditions applying to such subcontracting".
2. In accordance with Article 30(5) of DORA, "the ESAs shall, through the Joint Committee, develop draft regulatory technical standards to specify further the elements referred to in paragraph 2, point (a), which a financial entity needs to determine and assess when subcontracting ICT services supporting critical or important functions".
3. The draft RTS has been developed considering already existing specifications provided in Guidelines on outsourcing arrangements published by the
…