# DORA

ilert GmbH is compliant with Regulation (EU) 2022/2554 on Digital Operational Resilience for the Financial Sector (DORA). ilert provides a standard compliance package for EU financial-sector customers (banks, insurers, investment firms, PSPs, etc.).

## Documents

* [DORA Compliance Package](/trust-center/legal/dora-compliance.md) — Self-contained dossier mapping ilert's controls to core DORA obligations. Includes key facts, requirements mapping, responsibility allocation, and supporting documentation index.
* [DORA Addendum](/trust-center/legal/dora-addendum.md) — Contractual addendum to ilert's Terms & Conditions covering service levels, data location, security & incident handling, business continuity & exit, audit & regulatory cooperation, and termination rights.

## Key facts

| Topic                  | Detail                                                                                        |
| ---------------------- | --------------------------------------------------------------------------------------------- |
| DORA "critical" status | Not designated as critical ICT third-party                                                    |
| Incident notification  | ≤ 4 hours; updates every ≤ 4 hours; post-incident report within 5 business days               |
| Business continuity    | Active/active architecture; RTO ≤ 60 min, RPO ≤ 15 min                                        |
| Resilience testing     | Annual external pentest; quarterly vulnerability scans; cooperation with client TLPT          |
| Audit rights           | 1 remote audit/year free; on-site at agreed cost; additional audits after Major ICT Incidents |
| Exit & transition      | 60-day transition period; data export within 5 business days; step-in rights                  |

For the full details, refer to the documents above. For DORA-related inquiries, contact <compliance@ilert.com>.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.ilert.com/trust-center/compliance/dora.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.