IUA Circular 041/24

EU Digital Operational Resilience Act


with Jade Kowalski, Peter Given, Mathew Rutter, Tim Ryan and Alistair Cooper from DAC Beachcroft

Event Date:  Monday 3 June 2024
Time: 12 noon for approx 1 hour  (UK/London time)
Venue: IUA WebinarOnline only
Subject: At this market briefing, our guest speakers from DAC Beachcroft will provide attendees with the essential knowledge to navigate DORA - Digital Operational Resilience Act

This is a free event, but names and email addresses of all attendees are required for registration.
Please click here to register

The EU Digital Operational Resilience Act (DORA) will apply from 17 January 2025. The deadline for compliance is fast approaching and some of DORA's requirements will take time to meet, including remediating contracts to meet DORA's prescriptive requirements.

At this market briefing, our guest speakers from DAC Beachcroft will provide attendees with the essential knowledge to navigate this new regulation. Topics covered will include:

- An overview of DORA and its core requirements.
- Comparison between DORA and the UK's equivalent regime, highlighting key similarities and differences.
- An overview of DORA's contracting requirements. Our guest speakers will share actionable tips and techniques on approaching DORA's ICT contract requirements and undertaking remediation of legacy arrangements.
Our Speakers:  
Jade Kowalski is a specialist data protection lawyer. She advises on the full range of data protection issues such as complex data sharing arrangements, the use of cookies, marketing and the use of artificial intelligence. She is known for her practical, pragmatic approach to managing risk and ability to digest complex data protection issues into accessible, commercial advice. Jade has particular experience and expertise in advising clients in the insurance industry. She is a trusted adviser to clients across the sector including (re)insurers, brokers and industry bodies. Having spent a number of years on client secondment, Jade has a thorough understanding of the sector and is able to apply her legal expertise to its complex arrangements and data flows with ease. Her practical approach to problem solving and advising is highly regarded by clients.

Tim Ryan is a Partner and Head of our national TMT team. He is an experienced commercial lawyer whose team advises across a variety of matters in technology, media and telecoms, with clients ranging from scale-ups to listed companies. In addition to leading on large technology projects and transactions, Tim is heavily involved in working with his clients on a wide range of matters in digital business, ranging from software development, hosting, licensing, and data analytics to ecommerce and digital media.

Alistair Cooper specialises in complex technology transactions, commercial contracts, intellectual property and data protection matters. Alistair has extensive experience working with a variety of businesses, from high-growth scale-ups to global organisations, focusing in particular on matters arising at the intersection between technology and the healthcare, real estate and financial services sectors. He supports clients on a wide range of matters from day-to-day contractual issues through to business critical transformation projects and compliance issues.

Mathew Rutter has experience of a wide range of regulatory issues as they affect life and general insurers, brokers, banks, wealth managers and other financial institutions. His areas of expertise include prudential and conduct of business regulation, market abuse and insider dealing issues, the Bribery Act, money laundering, financial promotions, consumer credit, TCF, unfair terms in consumer contracts and MiFID. He also advises regulated firms on corporate matters, such as outsourcing arrangements, joint ventures, and shareholders or LLP agreements, and on corporate governance and the application of the UK's Senior Managers' Regime to banks and insurers.

Peter Given is a Partner in the Data, Privacy and Cyber team, specialising in data protection and privacy law. He advises clients on a wide range of data protection matters in a variety of contexts, including in relation to general data protection compliance, data processing and outsourcing arrangements, data protection impact assessments, direct marketing, data subject access requests, data breaches, regulatory investigations, and cross-border transfers of data. Peter has previously undertaken secondments to a global US-based bank, a global US-based insurer, and a major European pharmaceutical organisation. In one secondment, Peter acted as the organisation’s interim EMEA head of privacy.