ESAs Joint Committee Annual Report 2025 published summarizing DORA CTPP designation and oversight readiness (JETs/fees)

The Joint Committee of the European Supervisory Authorities published its Annual Report 2025, which includes updates on implementation of DORA’s oversight regime for critical ICT third‑party providers (CTPPs). The report describes the ESAs’ work on the CTPP designation process and oversight preparations (e.g., Joint Examination Teams and oversight fee readiness). This is not a new binding rule, but it is an authoritative regulator publication that informs financial entities’ and ICT vendors’ expectations for DORA third‑party oversight, contracting, resilience testing, and supervisory engagement.