{"id":23204,"date":"2026-04-27T11:27:57","date_gmt":"2026-04-27T09:27:57","guid":{"rendered":"https:\/\/www.orbit.cz\/?post_type=encyklopedie-cloudu&#038;p=23204"},"modified":"2026-04-27T11:39:44","modified_gmt":"2026-04-27T09:39:44","slug":"compliance-2026-how-the-functioning-of-czech-financial-institutions-will-change","status":"publish","type":"encyklopedie-cloudu","link":"https:\/\/www.orbit.cz\/en\/encyklopedie-cloudu\/compliance-2026-jak-se-zmeni-fungovani-ceskych-financnich-instituci\/","title":{"rendered":"Compliance 2026: how will the functioning of (Czech) financial institutions change?"},"content":{"rendered":"<style>.wp-block-kadence-column.kb-section-dir-horizontal > .kt-inside-inner-col > .kt-info-box23204_aac430-71 .kt-blocks-info-box-link-wrap{max-width:unset;}.kt-info-box23204_aac430-71 .kt-blocks-info-box-link-wrap{background:#ffffff;padding-top:var(--global-kb-spacing-xs, 1rem);padding-right:var(--global-kb-spacing-xs, 1rem);padding-bottom:var(--global-kb-spacing-xs, 1rem);padding-left:0px;}.kt-info-box23204_aac430-71.wp-block-kadence-infobox{max-width:100%;}.kt-info-box23204_aac430-71 .kadence-info-box-image-inner-intrisic-container .kadence-info-box-image-intrisic{padding-bottom:100%;max-width:100%;}.kt-info-box23204_aac430-71 .kadence-info-box-icon-container .kt-info-svg-icon, .kt-info-box23204_aac430-71 .kt-info-svg-icon-flip, .kt-info-box23204_aac430-71 .kt-blocks-info-box-number{font-size:50px;}.kt-info-box23204_aac430-71 .kt-blocks-info-box-media{border-radius:200px;overflow:hidden;border-top-width:0px;border-right-width:0px;border-bottom-width:0px;border-left-width:0px;padding-top:0px;padding-right:0px;padding-bottom:0px;padding-left:0px;margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0px;}.kt-info-box23204_aac430-71 .kt-infobox-textcontent p.kt-blocks-info-box-title{font-size:var(--global-kb-font-size-md, 1.25rem);padding-top:0px;padding-right:0px;padding-bottom:0px;padding-left:0px;margin-top:0px;margin-right:0px;margin-bottom:10px;margin-left:0px;}.kt-info-box23204_aac430-71 .kt-blocks-info-box-learnmore{background:transparent;border-width:0px 0px 0px 0px;padding-top:4px;padding-right:8px;padding-bottom:4px;padding-left:8px;margin-top:10px;margin-right:0px;margin-bottom:10px;margin-left:0px;}<\/style>\n<div class=\"wp-block-kadence-infobox kt-info-box23204_aac430-71 orbit-testimonial-second\"><span class=\"kt-blocks-info-box-link-wrap info-box-link kt-blocks-info-box-media-align-left kt-info-halign-left\"><div class=\"kt-blocks-info-box-media-container\"><div class=\"kt-blocks-info-box-media kt-info-media-animate-none\"><\/div><\/div><div class=\"kt-infobox-textcontent\"><p class=\"kt-blocks-info-box-title\">Which milestones will shape IT compliance in Europe in 2026? For the Czech Republic, DORA, EUCS and the AI Act are key. Let's take a closer look at what this means for banks, insurers and investment firms - especially for compliance, ICT risk and outsourcing teams.<\/p><p class=\"kt-blocks-info-box-text\">Lenka Lipov\u00e1<\/p><\/div><\/span><\/div>\n\n\n<style>.kb-image23204_26e06d-3c .kb-image-has-overlay:after{opacity:0.3;}<\/style>\n<div class=\"wp-block-kadence-image kb-image23204_26e06d-3c\"><figure class=\"aligncenter size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"800\" height=\"469\" src=\"https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/04\/image.jpg\" alt=\"Compliance 2026: how DORA, EUCS and AI Act will change the functioning of (Czech) financial institutions | ORBIT Cloud Encyclopedia\" class=\"kb-img wp-image-23244\" srcset=\"https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/04\/image.jpg 800w, https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/04\/image-300x176.jpg 300w, https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/04\/image-768x450.jpg 768w, https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/04\/image-18x12.jpg 18w\" sizes=\"auto, (max-width: 800px) 100vw, 800px\" \/><\/figure><\/div>\n\n\n\n<h2 class=\"wp-block-heading has--font-size\">Compliance in the financial sector: the reality of 2026&nbsp;<\/h2>\n\n\n\n<p><strong>DORA Regulation<\/strong>&nbsp;(Digital Operational Resilience Act) is already&nbsp;<span style=\"text-decoration: underline;\"><a href=\"https:\/\/www.orbit.cz\/en\/cloud-encyclopedia\/what-will-come-after-the-most-important-cloud-providers-come-under-the-authority\/\" target=\"_blank\" rel=\"noreferrer noopener\">effective for more than a year<\/a><\/span>. But only 2026 will show its real impact in practice. The institutions are gradually moving from the project phase to the <strong>day-to-day operations under the supervision of the regulator<\/strong>.<\/p>\n\n\n\n<p>In 2025, financial institutions focused primarily on:&nbsp;<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>gap analysis against DORA,&nbsp;<\/li>\n\n\n\n<li>mapping the links between critical functions (CIF) and ICT services,&nbsp;<\/li>\n\n\n\n<li><a href=\"https:\/\/www.orbit.cz\/en\/cloud-encyclopedia\/gdpr-nis-2-and-dora-risks-from-a-geography-perspective-how-to-travel-data-between-continents\/\" target=\"_blank\" rel=\"noreferrer noopener\">review of contracts with key suppliers<\/a>.&nbsp;<\/li>\n<\/ul>\n\n\n\n<p>At the same time, many institutions were counting on full compliance only in 2026-2027. <strong>the implementation is complex and affects the whole organisation<\/strong>.&nbsp;<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">DORA in practice (2026)&nbsp;<\/h2>\n\n\n\n<p>The year 2026 brings the first full experience of DORA in operation:&nbsp;<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Developing reporting and digital resilience testing,&nbsp;<\/li>\n\n\n\n<li>higher expectations of regulators (including the CNB),&nbsp;<\/li>\n\n\n\n<li>Emphasis on realistic management of ICT risks and dependencies.&nbsp;<\/li>\n<\/ul>\n\n\n\n<p>A major new feature is also&nbsp;<strong>designation of critical ICT third-party providers (CTPP)<\/strong>&nbsp;by the European Supervisory Authorities (EBA, EIOPA, ESMA). In addition to hyperscalers (Microsoft, AWS, Google Cloud), other major technology and data providers are on the list.&nbsp;<\/p>\n\n\n\n<p>What are the implications for financial institutions?&nbsp;<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Increased regulatory attention to the suppliers used&nbsp;<\/li>\n\n\n\n<li>Pressure for quality&nbsp;<strong>exit strategy and concentration risk management<\/strong>&nbsp;<\/li>\n\n\n\n<li>The need for detailed&nbsp;<strong>mapping dependencies on ICT services<\/strong>&nbsp;<\/li>\n<\/ul>\n\n\n\n<p>So now the problem, which the institutions have underestimated, is fully manifested:&nbsp;&nbsp;<\/p>\n\n\n<style>.wp-block-kadence-iconlist.kt-svg-icon-list-items23204_fac766-e3:not(.this-stops-third-party-issues){margin-top:0px;margin-bottom:0px;}.wp-block-kadence-iconlist.kt-svg-icon-list-items23204_fac766-e3 ul.kt-svg-icon-list:not(.this-prevents-issues):not(.this-stops-third-party-issues):not(.tijsloc){margin-top:0px;margin-right:0px;margin-bottom:var(--global-kb-spacing-sm, 1.5rem);margin-left:0px;}.wp-block-kadence-iconlist.kt-svg-icon-list-items23204_fac766-e3 ul.kt-svg-icon-list{grid-row-gap:5px;}.wp-block-kadence-iconlist.kt-svg-icon-list-items23204_fac766-e3 ul.kt-svg-icon-list .kt-svg-icon-list-item-wrap .kt-svg-icon-list-single{margin-right:10px;}.kt-svg-icon-list-items23204_fac766-e3 ul.kt-svg-icon-list .kt-svg-icon-list-level-0 .kt-svg-icon-list-single svg{font-size:20px;}<\/style>\n<div class=\"wp-block-kadence-iconlist kt-svg-icon-list-items kt-svg-icon-list-items23204_fac766-e3 kt-svg-icon-list-columns-1 alignnone\"><ul class=\"kt-svg-icon-list\"><style>.kt-svg-icon-list-item-23204_49ac4e-a1 .kt-svg-icon-list-text mark.kt-highlight{background-color:unset;font-style:normal;color:#f76a0c;-webkit-box-decoration-break:clone;box-decoration-break:clone;padding-top:0px;padding-right:0px;padding-bottom:0px;padding-left:0px;}<\/style>\n<li class=\"wp-block-kadence-listitem kt-svg-icon-list-item-wrap kt-svg-icon-list-item-23204_49ac4e-a1\"><span class=\"kb-svg-icon-wrap kb-svg-icon-fe_arrowRightCircle kt-svg-icon-list-single\"><svg viewbox=\"0 0 24 24\"  fill=\"none\" stroke=\"currentColor\" stroke-width=\"2\" stroke-linecap=\"round\" stroke-linejoin=\"round\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\"  aria-hidden=\"true\"><circle cx=\"12\" cy=\"12\" r=\"10\"\/><polyline points=\"12 16 16 12 12 8\"\/><line x1=\"8\" y1=\"12\" x2=\"16\" y2=\"12\"\/><\/svg><\/span><span class=\"kt-svg-icon-list-text\"><strong>&nbsp;<\/strong><em>mapping CIF to specific ICT services.<\/em><\/span><\/li>\n<\/ul><\/div>\n\n\n\n<p>Without it, monitoring, testing and outage management cannot be set up effectively.&nbsp;<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">EUCS and cloud sovereignty&nbsp;<\/h2>\n\n\n\n<p>A big theme for 2026 is also&nbsp;<strong>EUCS (European Cybersecurity Certification Scheme for Cloud Services)<\/strong>, which is still being finalised at European level.&nbsp;<\/p>\n\n\n\n<p>EUCS is created in response to the question:&nbsp;<\/p>\n\n\n<style>.wp-block-kadence-iconlist.kt-svg-icon-list-items23204_67dd25-46:not(.this-stops-third-party-issues){margin-top:0px;margin-bottom:0px;}.wp-block-kadence-iconlist.kt-svg-icon-list-items23204_67dd25-46 ul.kt-svg-icon-list:not(.this-prevents-issues):not(.this-stops-third-party-issues):not(.tijsloc){margin-top:0px;margin-right:0px;margin-bottom:var(--global-kb-spacing-sm, 1.5rem);margin-left:0px;}.wp-block-kadence-iconlist.kt-svg-icon-list-items23204_67dd25-46 ul.kt-svg-icon-list{grid-row-gap:5px;}.wp-block-kadence-iconlist.kt-svg-icon-list-items23204_67dd25-46 ul.kt-svg-icon-list .kt-svg-icon-list-item-wrap .kt-svg-icon-list-single{margin-right:10px;}.kt-svg-icon-list-items23204_67dd25-46 ul.kt-svg-icon-list .kt-svg-icon-list-level-0 .kt-svg-icon-list-single svg{font-size:20px;}<\/style>\n<div class=\"wp-block-kadence-iconlist kt-svg-icon-list-items kt-svg-icon-list-items23204_67dd25-46 kt-svg-icon-list-columns-1 alignnone\"><ul class=\"kt-svg-icon-list\"><style>.kt-svg-icon-list-item-23204_c43b93-94 .kt-svg-icon-list-text mark.kt-highlight{background-color:unset;font-style:normal;color:#f76a0c;-webkit-box-decoration-break:clone;box-decoration-break:clone;padding-top:0px;padding-right:0px;padding-bottom:0px;padding-left:0px;}<\/style>\n<li class=\"wp-block-kadence-listitem kt-svg-icon-list-item-wrap kt-svg-icon-list-item-23204_c43b93-94\"><span class=\"kb-svg-icon-wrap kb-svg-icon-fe_arrowRightCircle kt-svg-icon-list-single\"><svg viewbox=\"0 0 24 24\"  fill=\"none\" stroke=\"currentColor\" stroke-width=\"2\" stroke-linecap=\"round\" stroke-linejoin=\"round\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\"  aria-hidden=\"true\"><circle cx=\"12\" cy=\"12\" r=\"10\"\/><polyline points=\"12 16 16 12 12 8\"\/><line x1=\"8\" y1=\"12\" x2=\"16\" y2=\"12\"\/><\/svg><\/span><span class=\"kt-svg-icon-list-text\"><em>How to ensure control over data in the cloud in a global provider environment?<\/em>&nbsp;<\/span><\/li>\n<\/ul><\/div>\n\n\n\n<p>It is therefore a response to the EU's growing dependence on non-EU cloud giants (Microsoft, Amazon, Google). Concerns about data sovereignty have increased especially after the Snowden leaks (2013) and the introduction of the CLOUD Act (2018).&nbsp;&nbsp;<\/p>\n\n\n\n<p>The upcoming scheme envisages three levels:&nbsp;<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Basic<\/strong>&nbsp;- basic safety&nbsp;<\/li>\n\n\n\n<li><strong>Substantial<\/strong>&nbsp;- higher level of protection&nbsp;<\/li>\n\n\n\n<li><strong>High<\/strong>&nbsp;- highest level of security and control&nbsp;<\/li>\n<\/ul>\n\n\n\n<p>The discussion around EUCS revolves strongly around the topic <strong>digital sovereignty<\/strong>, especially for critical services (CIF).<\/p>\n\n\n\n<p>In practice, this means for banks:&nbsp;<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>monitoring the evolution of EUCS and its impact on cloud strategies,&nbsp;<\/li>\n\n\n\n<li>pressure on transparency and security of cloud providers,&nbsp;<\/li>\n\n\n\n<li>greater emphasis on vendor lock-in management and service portability.&nbsp;<\/li>\n<\/ul>\n\n\n<style>.kadence-column23204_53c983-d8 > .kt-inside-inner-col{padding-top:var(--global-kb-spacing-xs, 1rem);padding-right:var(--global-kb-spacing-xs, 1rem);padding-bottom:var(--global-kb-spacing-xs, 1rem);padding-left:var(--global-kb-spacing-xs, 1rem);}.kadence-column23204_53c983-d8 > .kt-inside-inner-col,.kadence-column23204_53c983-d8 > .kt-inside-inner-col:before{border-top-left-radius:0px;border-top-right-radius:0px;border-bottom-right-radius:0px;border-bottom-left-radius:0px;}.kadence-column23204_53c983-d8 > .kt-inside-inner-col{column-gap:var(--global-kb-gap-sm, 1rem);}.kadence-column23204_53c983-d8 > .kt-inside-inner-col{flex-direction:column;}.kadence-column23204_53c983-d8 > .kt-inside-inner-col > .aligncenter{width:100%;}.kadence-column23204_53c983-d8 > .kt-inside-inner-col{background-color:var(--global-palette8, #F7FAFC);}.kadence-column23204_53c983-d8 > .kt-inside-inner-col:before{opacity:0.3;}.kadence-column23204_53c983-d8{position:relative;}.kadence-column23204_53c983-d8, .kt-inside-inner-col > .kadence-column23204_53c983-d8:not(.specificity){margin-top:0px;margin-bottom:var(--global-kb-spacing-md, 2rem);}@media all and (max-width: 1024px){.kadence-column23204_53c983-d8 > .kt-inside-inner-col{flex-direction:column;justify-content:center;}}@media all and (max-width: 767px){.kadence-column23204_53c983-d8 > .kt-inside-inner-col{flex-direction:column;justify-content:center;}}<\/style>\n<div class=\"wp-block-kadence-column kadence-column23204_53c983-d8\"><div class=\"kt-inside-inner-col\">\n<details class=\"wp-block-details has-medium-font-size is-layout-flow wp-block-details-is-layout-flow\"><summary><strong>How is EUCS evolving?<\/strong><br><\/summary>\n<p><\/p>\n\n\n\n<ul style=\"font-size:16px\" class=\"wp-block-list\">\n<li><strong>2019: Basic framework<\/strong>&nbsp;<br>The adoption of the Cybersecurity Act (EU) 2019\/881 gives ENISA a mandate to create European certification schemes. EUCS is one of them and focuses on cloud services (IaaS, PaaS, SaaS).&nbsp;<\/li>\n<\/ul>\n\n\n\n<p><\/p>\n\n\n\n<ul style=\"font-size:16px\" class=\"wp-block-list\">\n<li style=\"font-size:16px\"><strong>2020: first proposals<\/strong>\u00a0<br><span style=\"text-decoration: underline;\"><a href=\"https:\/\/www.enisa.europa.eu\/publications\/eucs-cloud-service-scheme\" target=\"_blank\" rel=\"noreferrer noopener\">First version of EUCS<\/a><\/span>\u00a0include a strong focus on security and also elements of digital sovereignty. For example, they discuss\u00a0<br>data localisation requirements or restrictions on access from third countries.<\/li>\n<\/ul>\n\n\n\n<p><\/p>\n\n\n\n<ul style=\"font-size:16px\" class=\"wp-block-list\">\n<li style=\"font-size:16px\"><strong>2021-2022: intense debate<\/strong>\u00a0<br>The proposal provokes a strong reaction. Some Member States (notably France and Germany) are pushing for a stricter \u201esovereign\u201c approach. Global cloud providers and parts of the market warn of the risk of limiting competition. The result is a period of intense negotiations between regulators and Member States.<\/li>\n<\/ul>\n\n\n\n<p><\/p>\n\n\n\n<ul style=\"font-size:16px\" class=\"wp-block-list\">\n<li style=\"font-size:16px\"><strong>2023: modifications to the proposal<\/strong>&nbsp;<br>Subsequent versions of the proposal gradually modify the requirements:&nbsp;\n<ul class=\"wp-block-list\">\n<li>greater differentiation between the different levels of certification&nbsp;<\/li>\n\n\n\n<li>relaxation of some requirements for lower levels (basic, substantial)&nbsp;<\/li>\n\n\n\n<li>continued discussion on the scope of requirements for the highest level (high)&nbsp;<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n\n\n\n<p><\/p>\n\n\n\n<ul style=\"font-size:16px\" class=\"wp-block-list\">\n<li style=\"font-size:16px\"><strong>2024-2026: finalisation at European level<\/strong>&nbsp;<br>The EUCS remains subject to political and professional negotiations. At this stage:&nbsp;\n<ul class=\"wp-block-list\">\n<li>the final form of the scheme is being reconciled,&nbsp;<\/li>\n\n\n\n<li>Its relationship to digital sovereignty and the European cloud strategy is addressed,&nbsp;<\/li>\n\n\n\n<li>its practical application in regulated sectors (including finance) is discussed.&nbsp;<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<\/details>\n<\/div><\/div>\n\n\n\n<p>The scheme so far&nbsp;<strong>has not been finally adopted, but its impact is already evident<\/strong>&nbsp;- especially in how financial institutions think about the cloud, vendors and data localization.&nbsp;<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">AI Act: second wave of compliance<\/h2>\n\n\n\n<p>Another major milestone awaits us in&nbsp;<strong>August 2026<\/strong>, when the key <span style=\"text-decoration: underline;\"><a href=\"https:\/\/eur-lex.europa.eu\/eli\/reg\/2024\/1689\/oj\/eng\" target=\"_blank\" rel=\"noreferrer noopener\">AI Actu duties<\/a><\/span>, especially for high-risk AI systems.&nbsp;<\/p>\n\n\n\n<p>Financial institutions thus address:&nbsp;<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>governance of AI models,&nbsp;<\/li>\n\n\n\n<li>risk management, including bias and explainability,&nbsp;<\/li>\n\n\n\n<li>registration and possible registration of selected systems,&nbsp;<\/li>\n\n\n\n<li>linking AI with ICT risk management.&nbsp;<\/li>\n<\/ul>\n\n\n\n<p>With the increasing use of AI in the cloud, this area naturally connects to DORA and broader digital sovereignty issues.&nbsp;<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Three parallel compliance challenges in 2026&nbsp;<\/h2>\n\n\n\n<p>Compliance today is therefore not a single topic, but a combination of several areas:&nbsp;<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>DORA \u2192 ICT risk management, incidents, third parties&nbsp;<\/li>\n\n\n\n<li>AI Act \u2192 governance and regulation of AI systems&nbsp;<\/li>\n\n\n\n<li>Cloud \/ sovereignty (EUCS) \u2192 control over data and suppliers&nbsp;<\/li>\n<\/ul>\n\n\n\n<p>Institutions that address these areas separately face limits.\u00a0<strong>Conversely, there is a growing importance of a networked approach across<\/strong><br><strong>organizations.\u00a0<\/strong><\/p>\n\n\n\n<h5 class=\"wp-block-heading\">What turns out to be the key?<\/h5>\n\n\n\n<ul class=\"wp-block-list\">\n<li>linking compliance, ICT risk, IT and business<\/li>\n\n\n\n<li>the emergence of central governance for AI and cloud&nbsp;<\/li>\n\n\n\n<li>emphasis on real (not paper) resilience&nbsp;<\/li>\n<\/ul>\n\n\n\n<h5 class=\"wp-block-heading\">What is often overlooked?<\/h5>\n\n\n\n<p>In addition to DORA, AI Act and EUCS, the broader regulatory context needs to be observed.&nbsp;<\/p>\n\n\n\n<p>In particular, it comes into play<strong>&nbsp;implementation of the NIS Directive2<\/strong>,which extends cybersecurity requirements across sectors and impacts supply chains. At the same time, existing regulatory frameworks remain relevant (e.g.&nbsp;<em>EBA guidelines for ICT risk and outsourcing<\/em>), which overlap with DORA in practice.&nbsp;<\/p>\n\n\n\n<h5 class=\"wp-block-heading\">The result?&nbsp;<\/h5>\n\n\n\n<p><br>Compliance in IT is not just moving towards new regulations, but towards&nbsp;<strong>layering of requirements<\/strong>,which are intertwined. The year 2026 is a turning point. It is no longer about \u201ereadiness\u201c but about&nbsp;<strong>demonstrable compliance in practice<\/strong>.&nbsp;<\/p>\n\n\n\n<p>And 2027? That is likely to bring a further shift towards&nbsp;<strong>Open Finance<\/strong>&nbsp;(PSD3, PSR, FiDA). But that's a chapter for itself.&nbsp;<\/p>\n\n\n\n<div style=\"height:30px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<h3 class=\"wp-block-heading has-text-align-center\">NEED HELP IMPLEMENTING DORA, EUCS, AI ACTU OR OTHER REGULATIONS? CONTACT US AND WE WILL HELP YOU.<\/h3>","protected":false},"excerpt":{"rendered":"<p>Compliance ve&nbsp;finan\u010dn\u00edm&nbsp;sektoru:&nbsp;realita&nbsp;roku&nbsp;2026&nbsp; Na\u0159\u00edzen\u00ed&nbsp;DORA&nbsp;(Digital Operational Resilience Act) je&nbsp;u\u017e&nbsp;\u00fa\u010dinn\u00e9&nbsp;d\u00e9le&nbsp;ne\u017e&nbsp;rok.&nbsp;Teprve&nbsp;rok&nbsp;2026 ale ukazuje jeho skute\u010dn\u00fd dopad v&nbsp;praxi. Instituce toti\u017e postupn\u011b p\u0159ech\u00e1zej\u00ed z&nbsp;projektov\u00e9 f\u00e1ze do ka\u017edodenn\u00edho fungov\u00e1n\u00ed pod dohledem regul\u00e1tora. V&nbsp;roce&nbsp;2025 se&nbsp;finan\u010dn\u00ed&nbsp;instituce&nbsp;soust\u0159edily&nbsp;p\u0159edev\u0161\u00edm&nbsp;na:&nbsp; Mnoho&nbsp;instituc\u00ed&nbsp;p\u0159itom&nbsp;po\u010d\u00edtalo&nbsp;s&nbsp;plnou&nbsp;compliance&nbsp;a\u017e&nbsp;v&nbsp;letech&nbsp;2026\u20132027. Dnes je&nbsp;jasn\u00e9&nbsp;pro\u010d je implementace komplexn\u00ed a&nbsp;zasahuje celou organizaci.&nbsp; DORA v&nbsp;praxi&nbsp;(2026)&nbsp; Rok 2026&nbsp;p\u0159in\u00e1\u0161\u00ed&nbsp;prvn\u00ed&nbsp;plnou&nbsp;zku\u0161enost&nbsp;s&nbsp;DORA v&nbsp;provozu:&nbsp; Z\u00e1sadn\u00ed&nbsp;novinkou&nbsp;je&nbsp;tak\u00e9&nbsp;ozna\u010den\u00ed&nbsp;kritick\u00fdch&nbsp;ICT&nbsp;third-party providers (CTPP)&nbsp;ze&nbsp;strany&nbsp;evropsk\u00fdch&nbsp;dohledov\u00fdch&nbsp;org\u00e1n\u016f&nbsp;(EBA, EIOPA, ESMA). Na&nbsp;seznamu&nbsp;jsou&nbsp;vedle&nbsp;hyperscaler\u016f&nbsp;(Microsoft, AWS, Google Cloud) i&nbsp;dal\u0161\u00ed&nbsp;v\u00fdznamn\u00ed&nbsp;technologi\u010dt\u00ed&nbsp;a&nbsp;datov\u00ed&nbsp;poskytovatel\u00e9.&nbsp; Jak\u00fd&nbsp;to&nbsp;bude&nbsp;m\u00edt&nbsp;d\u016fsledek&nbsp;pro&nbsp;finan\u010dn\u00ed&nbsp;instituce?&nbsp; Nyn\u00ed se&nbsp;tedy&nbsp;naplno projevuje&#8230;<\/p>","protected":false},"author":39,"featured_media":23235,"template":"","meta":{"_acf_changed":false,"_kad_blocks_custom_css":"","_kad_blocks_head_custom_js":"","_kad_blocks_body_custom_js":"","_kad_blocks_footer_custom_js":"","_kad_post_transparent":"","_kad_post_title":"","_kad_post_layout":"","_kad_post_sidebar_id":"","_kad_post_content_style":"","_kad_post_vertical_padding":"","_kad_post_feature":"","_kad_post_feature_position":"","_kad_post_header":false,"_kad_post_footer":false,"_kad_post_classname":""},"categories":[129],"class_list":["post-23204","encyklopedie-cloudu","type-encyklopedie-cloudu","status-publish","has-post-thumbnail","hentry","category-cloud-compliance"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.4 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Compliance\u00a02026:\u00a0jak se zm\u011bn\u00ed fungov\u00e1n\u00ed finan\u010dn\u00edch instituc\u00ed? | Encyklopedie cloudu<\/title>\n<meta name=\"description\" content=\"Co pro t\u00fdmy\u00a0compliance, ICT risk a\u00a0outsourcingu bank, poji\u0161\u0165oven a\u00a0investi\u010dn\u00edch firem znamen\u00e1 DORA, EUCS a\u00a0AI\u00a0Act? \u010c\u00edm \u017eije compliance 2026?\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.orbit.cz\/en\/cloud-encyclopedia\/compliance-2026-how-the-functioning-of-czech-financial-institutions-will-change\/\" \/>\n<meta property=\"og:locale\" content=\"en_GB\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Compliance\u00a02026 | Encyklopedie cloudu\" \/>\n<meta property=\"og:description\" content=\"Jak zm\u011bn\u00ed DORA, EUCS a I Act fungov\u00e1n\u00ed (\u010desk\u00fdch) finan\u010dn\u00edch instituc\u00ed?\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.orbit.cz\/en\/cloud-encyclopedia\/compliance-2026-how-the-functioning-of-czech-financial-institutions-will-change\/\" \/>\n<meta property=\"og:site_name\" content=\"ORBIT | create IT your own way\" \/>\n<meta property=\"article:modified_time\" content=\"2026-04-27T09:39:44+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/04\/EC24-clanek-2026-copy-1.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1200\" \/>\n\t<meta property=\"og:image:height\" content=\"628\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:title\" content=\"Compliance\u00a02026 | Encyklopedie cloudu\" \/>\n<meta name=\"twitter:description\" content=\"Jak zm\u011bn\u00ed DORA, EUCS a I Act fungov\u00e1n\u00ed (\u010desk\u00fdch) finan\u010dn\u00edch instituc\u00ed?\" \/>\n<meta name=\"twitter:image\" content=\"https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/04\/EC24-clanek-2026-copy-1.jpg\" \/>\n<meta name=\"twitter:label1\" content=\"Estimated reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"5 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.orbit.cz\\\/encyklopedie-cloudu\\\/compliance-2026-jak-se-zmeni-fungovani-ceskych-financnich-instituci\\\/\",\"url\":\"https:\\\/\\\/www.orbit.cz\\\/encyklopedie-cloudu\\\/compliance-2026-jak-se-zmeni-fungovani-ceskych-financnich-instituci\\\/\",\"name\":\"Compliance\u00a02026:\u00a0jak se zm\u011bn\u00ed fungov\u00e1n\u00ed finan\u010dn\u00edch instituc\u00ed? | Encyklopedie cloudu\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.orbit.cz\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.orbit.cz\\\/encyklopedie-cloudu\\\/compliance-2026-jak-se-zmeni-fungovani-ceskych-financnich-instituci\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.orbit.cz\\\/encyklopedie-cloudu\\\/compliance-2026-jak-se-zmeni-fungovani-ceskych-financnich-instituci\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.orbit.cz\\\/wp-content\\\/uploads\\\/2026\\\/04\\\/EC24-clanek-2026-copy-1.jpg\",\"datePublished\":\"2026-04-27T09:27:57+00:00\",\"dateModified\":\"2026-04-27T09:39:44+00:00\",\"description\":\"Co pro t\u00fdmy\u00a0compliance, ICT risk a\u00a0outsourcingu bank, poji\u0161\u0165oven a\u00a0investi\u010dn\u00edch firem znamen\u00e1 DORA, EUCS a\u00a0AI\u00a0Act? \u010c\u00edm \u017eije compliance 2026?\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.orbit.cz\\\/encyklopedie-cloudu\\\/compliance-2026-jak-se-zmeni-fungovani-ceskych-financnich-instituci\\\/#breadcrumb\"},\"inLanguage\":\"en-GB\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.orbit.cz\\\/encyklopedie-cloudu\\\/compliance-2026-jak-se-zmeni-fungovani-ceskych-financnich-instituci\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-GB\",\"@id\":\"https:\\\/\\\/www.orbit.cz\\\/encyklopedie-cloudu\\\/compliance-2026-jak-se-zmeni-fungovani-ceskych-financnich-instituci\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.orbit.cz\\\/wp-content\\\/uploads\\\/2026\\\/04\\\/EC24-clanek-2026-copy-1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.orbit.cz\\\/wp-content\\\/uploads\\\/2026\\\/04\\\/EC24-clanek-2026-copy-1.jpg\",\"width\":1200,\"height\":628},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.orbit.cz\\\/encyklopedie-cloudu\\\/compliance-2026-jak-se-zmeni-fungovani-ceskych-financnich-instituci\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.orbit.cz\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Compliance\u00a02026:\u00a0jak se zm\u011bn\u00ed fungov\u00e1n\u00ed (\u010desk\u00fdch) finan\u010dn\u00edch instituc\u00ed?\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.orbit.cz\\\/#website\",\"url\":\"https:\\\/\\\/www.orbit.cz\\\/\",\"name\":\"ORBIT | create IT your own way\",\"description\":\"ORBIT | create IT your own way\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.orbit.cz\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.orbit.cz\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-GB\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.orbit.cz\\\/#organization\",\"name\":\"ORBIT s.r.o.\",\"url\":\"https:\\\/\\\/www.orbit.cz\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-GB\",\"@id\":\"https:\\\/\\\/www.orbit.cz\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.orbit.cz\\\/wp-content\\\/uploads\\\/2020\\\/11\\\/logoslogan-01.png\",\"contentUrl\":\"https:\\\/\\\/www.orbit.cz\\\/wp-content\\\/uploads\\\/2020\\\/11\\\/logoslogan-01.png\",\"width\":1417,\"height\":829,\"caption\":\"ORBIT s.r.o.\"},\"image\":{\"@id\":\"https:\\\/\\\/www.orbit.cz\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/www.linkedin.com\\\/company\\\/orbit\\\/\"]}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Compliance 2026: How will it change the way financial institutions operate? | Encyclopedia of the Cloud","description":"What does DORA, EUCS and the AI Act mean for compliance, ICT risk and outsourcing teams at banks, insurance and investment firms? What is compliance 2026 all about?","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.orbit.cz\/en\/cloud-encyclopedia\/compliance-2026-how-the-functioning-of-czech-financial-institutions-will-change\/","og_locale":"en_GB","og_type":"article","og_title":"Compliance\u00a02026 | Encyklopedie cloudu","og_description":"Jak zm\u011bn\u00ed DORA, EUCS a I Act fungov\u00e1n\u00ed (\u010desk\u00fdch) finan\u010dn\u00edch instituc\u00ed?","og_url":"https:\/\/www.orbit.cz\/en\/cloud-encyclopedia\/compliance-2026-how-the-functioning-of-czech-financial-institutions-will-change\/","og_site_name":"ORBIT | create IT your own way","article_modified_time":"2026-04-27T09:39:44+00:00","og_image":[{"width":1200,"height":628,"url":"https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/04\/EC24-clanek-2026-copy-1.jpg","type":"image\/jpeg"}],"twitter_card":"summary_large_image","twitter_title":"Compliance\u00a02026 | Encyklopedie cloudu","twitter_description":"Jak zm\u011bn\u00ed DORA, EUCS a I Act fungov\u00e1n\u00ed (\u010desk\u00fdch) finan\u010dn\u00edch instituc\u00ed?","twitter_image":"https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/04\/EC24-clanek-2026-copy-1.jpg","twitter_misc":{"Estimated reading time":"5 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.orbit.cz\/encyklopedie-cloudu\/compliance-2026-jak-se-zmeni-fungovani-ceskych-financnich-instituci\/","url":"https:\/\/www.orbit.cz\/encyklopedie-cloudu\/compliance-2026-jak-se-zmeni-fungovani-ceskych-financnich-instituci\/","name":"Compliance 2026: How will it change the way financial institutions operate? | Encyclopedia of the Cloud","isPartOf":{"@id":"https:\/\/www.orbit.cz\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.orbit.cz\/encyklopedie-cloudu\/compliance-2026-jak-se-zmeni-fungovani-ceskych-financnich-instituci\/#primaryimage"},"image":{"@id":"https:\/\/www.orbit.cz\/encyklopedie-cloudu\/compliance-2026-jak-se-zmeni-fungovani-ceskych-financnich-instituci\/#primaryimage"},"thumbnailUrl":"https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/04\/EC24-clanek-2026-copy-1.jpg","datePublished":"2026-04-27T09:27:57+00:00","dateModified":"2026-04-27T09:39:44+00:00","description":"What does DORA, EUCS and the AI Act mean for compliance, ICT risk and outsourcing teams at banks, insurance and investment firms? What is compliance 2026 all about?","breadcrumb":{"@id":"https:\/\/www.orbit.cz\/encyklopedie-cloudu\/compliance-2026-jak-se-zmeni-fungovani-ceskych-financnich-instituci\/#breadcrumb"},"inLanguage":"en-GB","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.orbit.cz\/encyklopedie-cloudu\/compliance-2026-jak-se-zmeni-fungovani-ceskych-financnich-instituci\/"]}]},{"@type":"ImageObject","inLanguage":"en-GB","@id":"https:\/\/www.orbit.cz\/encyklopedie-cloudu\/compliance-2026-jak-se-zmeni-fungovani-ceskych-financnich-instituci\/#primaryimage","url":"https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/04\/EC24-clanek-2026-copy-1.jpg","contentUrl":"https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/04\/EC24-clanek-2026-copy-1.jpg","width":1200,"height":628},{"@type":"BreadcrumbList","@id":"https:\/\/www.orbit.cz\/encyklopedie-cloudu\/compliance-2026-jak-se-zmeni-fungovani-ceskych-financnich-instituci\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.orbit.cz\/"},{"@type":"ListItem","position":2,"name":"Compliance\u00a02026:\u00a0jak se zm\u011bn\u00ed fungov\u00e1n\u00ed (\u010desk\u00fdch) finan\u010dn\u00edch instituc\u00ed?"}]},{"@type":"WebSite","@id":"https:\/\/www.orbit.cz\/#website","url":"https:\/\/www.orbit.cz\/","name":"ORBIT | create IT your own way","description":"ORBIT | create IT your own way","publisher":{"@id":"https:\/\/www.orbit.cz\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.orbit.cz\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-GB"},{"@type":"Organization","@id":"https:\/\/www.orbit.cz\/#organization","name":"ORBIT s.r.o.","url":"https:\/\/www.orbit.cz\/","logo":{"@type":"ImageObject","inLanguage":"en-GB","@id":"https:\/\/www.orbit.cz\/#\/schema\/logo\/image\/","url":"https:\/\/www.orbit.cz\/wp-content\/uploads\/2020\/11\/logoslogan-01.png","contentUrl":"https:\/\/www.orbit.cz\/wp-content\/uploads\/2020\/11\/logoslogan-01.png","width":1417,"height":829,"caption":"ORBIT s.r.o."},"image":{"@id":"https:\/\/www.orbit.cz\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.linkedin.com\/company\/orbit\/"]}]}},"taxonomy_info":{"category":[{"value":129,"label":"Cloud compliance"}]},"featured_image_src_large":["https:\/\/www.orbit.cz\/wp-content\/uploads\/2026\/04\/EC24-clanek-2026-copy-1-1024x536.jpg",1024,536,true],"author_info":{"display_name":"Lenka Lipov\u00e1","author_link":"https:\/\/www.orbit.cz\/en\/author\/1054ab44868b97a7\/"},"comment_info":"","_links":{"self":[{"href":"https:\/\/www.orbit.cz\/en\/wp-json\/wp\/v2\/encyklopedie-cloudu\/23204","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.orbit.cz\/en\/wp-json\/wp\/v2\/encyklopedie-cloudu"}],"about":[{"href":"https:\/\/www.orbit.cz\/en\/wp-json\/wp\/v2\/types\/encyklopedie-cloudu"}],"author":[{"embeddable":true,"href":"https:\/\/www.orbit.cz\/en\/wp-json\/wp\/v2\/users\/39"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.orbit.cz\/en\/wp-json\/wp\/v2\/media\/23235"}],"wp:attachment":[{"href":"https:\/\/www.orbit.cz\/en\/wp-json\/wp\/v2\/media?parent=23204"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.orbit.cz\/en\/wp-json\/wp\/v2\/categories?post=23204"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}