Digital Operational Resilience Act (‘DORA’) Mapping

This document is provided to assist regulated entities from the financial sector to evaluate compliance of their use of Salesforce’s online services with applicable requirements of supervisory authorities in the European Union, as set forth under “DORA” - Regulation (EU) 2022/2554 of the European Parliament and of the Council of 14 December 2022 on digital operational resilience for the financial sector. For this purpose, Section III of this document maps the key requirements for cloud contracts specified in DORA against the contractual documents and related documentation that Salesforce makes available to Regulated Entities using Salesforce’s online services. Note that this document focuses on the contractual requirements specified in DORA and does not include a full overview of all requirements concerning the internal compliance of Regulated Entities.