With DORA, the Regulation (EU) 2022/2554 on digital operational resilience for the financial sector (Digital Operational Resilience Act), the European Union has introduced comprehensive regulation for cybersecurity, ICT risks, and digital operational resilience in the financial sector. This regulation significantly strengthens the European financial market against cyber risks and ICT incidents. As a result, financial companies and their IT suppliers are required to provide additional information about the ICT supply chain. This information is compiled in the "Register of Information." The DORA Module of the CyberRisk Ratings assists in collecting data for this register, which must be requested externally from suppliers and subcontractors.