DORA reports

regulation for financial entities

The Digital Operational Resilience Act (DORA) is a European Union regulation requiring financial entities to improve operational resilience in digital environments. DORA came into effect at the beginning of 2023. After a two-year preparation period, the regulation became fully applicable on 17 January 2025.

DORA establishes a comprehensive framework in areas such as effective risk management, operational capabilities in ICT (Information and Communications Technology) and cybersecurity, and the management of external service providers to ensure the stability and integrity of the EU financial system, covering the entire value chain.

How to Prepare for DORA?

Ask an expert

How will DORA affect external service providers?

Increased supervision

External ICT service providers offering services to financial institutions will be subject to enhanced regulatory oversight under DORA.

Compliance requirement

Providers must ensure their services comply with DORA standards, as financial entities remain responsible for their suppliers’ regulatory compliance.

Enhanced security measures

Expectations for stronger security protocols will increase, including robust authentication strategies and incident response measures.

Contract adjustments

Existing contracts between financial entities and ICT providers may require amendments to include DORA compliance clauses.

Verification obligations

Financial organizations will need to ensure the compliance of their external ICT service providers, which may include audits and certifications.

How V-Desk supports compliance with DORA?

Reporting a full registry of activities outsourced to external entities, including intra-group services and changes in the outsourcing of critical ICT services.
Standardizing key service elements and relationships with external ICT providers to enable complete monitoring.
Considering IT concentration risks and risks arising from sub-outsourcing.
Ensuring that contracts with external ICT service providers contain all necessary monitoring and availability details, such as service level descriptions and data processing locations.
Providing proper monitoring of risks arising from reliance on external ICT providers.

Trusted Business Partner.
V-Desk has over 20 years of market experience and more than 2,000 implemented projects.

Join the ranks of our customers

DORA reports generated in V-Desk:

RT.01.01 – Entity maintaining the information registry
RT.01.02 – List of entities covered by the information registry
RT.01.03 – List of branches
RT.02.01 – Contractual arrangements – General information
RT.02.02 – Contractual arrangements – Detailed information
RT.02.03 – List of intra-group contractual arrangements
RT.03.01 – Entities signing ICT service agreements or acting on behalf of ICT service users
RT.03.02 – External ICT service providers signing ICT service agreements
RT.03.03 – Entities signing ICT service agreements for another consolidated entity
RT.04.01 – Entities using ICT services
RT.05.01 – External ICT service provider
RT.05.02 – ICT service supply chains
RT.06.01 – Function identification
RT.07.01 – ICT service assessment
RT.99.01 – Definitions for entities using ICT services

Our customers are talking about V-Desk

Scan&Paste
Scan&Paste

Lhoist Bukowa

“The workflow system from Pimesoft is a simple way to collect quality information, analyse trends, identify problems, and take corrective action. This allows for continuous process improvement and higher quality standards.”

Marcin Cygan, Quality Manager Lhoist Bukowa sp. z o.o

Obieg faktur
Invoices

Jass Board

“The switch to digital task and document workflows was our goal, which we were able to achieve with the professional support of Primesoft.”

Mariusz Lisiecki, Information Systems Manager

Obieg faktur
Invoices

Obieg umów
Contracts

Elplast +

The expectations we had for digitizing our company have been met. With the V-Desk system, we are no longer using paper documents, which has had a positive impact on the efficiency of our processes.

Renata Rosenbeiger, Chief Accountant at Elplast+ sp. z o.o.

Delegacje
Business trips

Obieg faktur
Invoices

Grupa Pracuj

“V-Desk is a modern and efficient solution, equipped with a range of tools that significantly improve the comfort of everyday work. We appreciate the flexibility and scalability of the system, which allows documents to be processed efficiently and in accordance with established procedures. By launching the V-Desk system, we have significantly reduced the use of paper documents, and the processing and management of invoices and correspondence in the company has been optimized.”

Lidia Zalewska, Senior Office Management Specialist

Obieg faktur
Invoices

Zamówienia
Requests

Rotometal

“We chose the V-Desk solution because of its wide range of options for adapting the solution to our individual processes, as well as the flexibility it offers when integrating with the SAP system.”

Sebastian Grubski, Financial Director

Obieg faktur
Invoices

Polipak

The flexibility of the implemented system means that its development possibilities, tailored to the company’s current needs, are an additional advantage that is highly valued by our company.

Tomasz Tramś, Chairman of the Board

Delegacje
Business trips

Obieg faktur
Invoices

Scan&Paste
Scan&Paste

Mitutoyo Polska

V-Desk allows us to focus on the tasks that are essential to our business, without wasting valuable time waiting for documents or registering them manually.

Monika Siurdyban, Chief Accountant Mitutoyo Polska

Obieg faktur
Invoices

HR i kadry
Human resources

Obieg umów
Contracts

EFL Leasing

“Given that we have been successfully cooperating with Primesoft Polska Sp. z o.o. for many years in the development of the V-Desk system, we are pleased to recommend it as a supplier of electronic document circulation systems.”

Paweł Lewandowski, Vice President of the Management Board at EFL

Obieg faktur
Invoices

HR i kadry
Human resources

NUXE

“V-Desk GA introduced a systematic approach to processes at Nuxe, reducing the problems associated with manual document handling. From now on, we manage invoices electronically and handle HR processes such as vacation requests and approvals, as well as employee attendance records.”

Piotr Wijtiwiak, Business Unit Manager

Obieg faktur
Invoices

Obieg korespondencji
Mailroom

Obieg umów
Contracts

Autostrada Wielkopolska

“We implemented this system as an independent platform available to our subcontractors, self- employed engineers, and other external entities. We wanted to streamline document circulation in our company. We searched the market for programmes that would be easy to use, ergonomic, but also flexible in terms of future system development.”

Paweł Janczak, IT Project Manager

Autostrada Wielkopolska - klient Primesoft

Obieg faktur
Invoices

JMP Flowers

“We no longer waste time searching for invoices, and we have resolved situations where tasks were not monitored and responsibility was unclear. With the V-Desk System, we have achieved smooth document processing.”

Dominika Sor, IT specialist

Obieg faktur
Invoices

Obieg umów
Contracts

Zapotrzebowania
Procurement

Bostik

“We took advantage of the consulting and analytical support provided by Primesoft Polska, and as a result of our cooperation, the V-Desk electronic document circulation system was launched in our organization. We confirm the implementation of the solution in the areas of contracts, orders, and invoices, as well as its integration with the Exact financial system. In all areas, document approval and circulation processes have been streamlined, and control at every stage has been strengthened.”

Bogusław Nowosielski, Managing Director, Chairman of the Board

Budżety
Budgets

Obieg faktur
Invoices

Obieg korespondencji
Mailroom

Obieg umów
Contracts

Zamówienia
Requests

Domost

We value the potential of the V-Desktop platform, its stability and functionality, which allows us to save time and resources. Tasks including document registration and approval have been automated, and we now have effective control over the process.

Łukasz Siwek, Chairman of the Board

Delegacje
Business trips

Obieg faktur
Invoices

Kia Polska

“With a professional approach and a deep understanding of our needs, the solution meets our expectations. V-Desk is easy to use and functional, but above all, it streamlines the work of many people and increases the efficiency of the company’s operations.”

Anna Jankowska-Kosińska, Finance General Manager Kia Polska sp. z o.o.

Obieg faktur
Invoices

SMP Poland

The system allows us to easily track payment deadlines, verify incorrect entries and, above all, eliminate manual work at many stages of invoice processing.

Anna Korytko, Financial Director

Obieg faktur
Invoices

Securitas

“During 11 years of using V-Desk, we have become convinced of the flexibility of this solution, which is why we commissioned modifications allowing V-Desk to be integrated with another system in the company. We confirm that the work was carried out to the highest standard, maintaining high standards of business ethics and continuity of processes in the company.”

Krzysztof Bartuszek, Chairman of the Management Board of Securitas companies in Poland

Obieg faktur
Invoices

Obieg korespondencji
Mailroom

Obieg umów
Contracts

Zamówienia
Requests

BMW Dynamic Motors

“Cooperation with Primesoft Polska began in 2021 and focused on the introduction of solutions aimed at the complex digitization of business processes management.”

Grażyna Jaworska, President of the Management Board

Obieg faktur
Invoices

Obieg korespondencji
Mailroom

Zakupy
Purchases

Zapotrzebowania
Procurement

Ariadna SA Fabryka Nici

“The transition to a digital document circulation system involved changes that had a positive impact on the functioning and flow of processes such as invoice circulation, requisitions, purchases and employee requests. The workflow system was launched to handle the circulation of cost invoices, of which approximately 500 are processed each month.
The positive cooperation with Primesoft, whose goal was to digitise Ariadna, allows us to plan the expansion of the V-Desk system with additional modules.”

Beata Karbowniczak, Chairman of the Board

Ariadna SA Fabryka Nici - klient Primesoft

DORA reports – FAQ

What is DORA and when does it take effect?

DORA (Digital Operational Resilience Act) is an EU regulation on digital operational resilience for financial entities. It came into effect in early 2023, with full application beginning 17 January 2025.

Who does DORA apply to?

DORA applies to a broad range of financial entities operating in the EU market and their external ICT service providers. This includes both financial institutions and organizations providing critical technology services to them.

Which areas of organizational operations does DORA cover?

DORA provides frameworks for effective ICT risk management, operational continuity, cybersecurity, and management of external ICT service providers. Its goal is to enhance the stability and integrity of the financial system across the entire value chain.

How does DORA affect external ICT service providers?

ICT service providers will be subject to increased regulatory oversight. They must ensure their services comply with DORA standards because financial entities using their services remain responsible for compliance. This includes stricter requirements for security, service continuity, and transparency in cooperation.

Does DORA require changes to existing ICT service contracts?

Yes. Existing contracts between financial entities and ICT providers may require amendments to reflect DORA compliance. This can include clarifying service levels, monitoring rules, availability, data processing locations, and sub-outsourcing arrangements.

How does V-Desk help organizations meet DORA ICT outsourcing requirements?

V-Desk allows reporting of the full registry of outsourced activities, including intra-group services and changes in critical ICT outsourcing. It also enables standardization of key service elements and relationships with ICT providers for full monitoring. The system helps account for IT concentration risks and sub-outsourcing risks.

Can V-Desk help implement DORA-compliant ICT contracts?

Yes. V-Desk ensures that contracts with external ICT providers contain all necessary details regarding service levels, monitoring, availability, and data processing locations. These can then be monitored and reported consistently across the organization.

Which DORA reports can be generated in V-Desk?

V-Desk supports reports in compliance with DORA nomenclature, including:
RT.01.01–RT.01.03 (information registry and entity lists), RT.02.01–RT.02.03 (contractual arrangements), RT.03.01–RT.03.03 (signatories and ICT service providers), RT.04.01 (ICT service users), RT.05.01–RT.05.02 (providers and supply chains), RT.06.01 (function identification), RT.07.01 (ICT service assessment), and RT.99.01 (definitions). This enables full reporting in line with regulatory requirements.

Is V-Desk only suitable for large financial institutions?

No. V-Desk supports both large financial institutions and mid-sized organizations that are subject to DORA requirements or work with regulated entities. With over 20 years of experience and 2,000+ implementations, V-Desk can be tailored to the scale and maturity of any organization.

Where to start preparing for DORA with V-Desk?

A good first step is to organize a registry of outsourced activities and centralize ICT service provider information in V-Desk. Next, organizations can gradually enable DORA reports, standardize contract content, and implement monitoring mechanisms for IT concentration and sub-outsourcing risks. Later, the system can be expanded to cover additional areas of digital operational resilience.