This calculator is an educational self-assessment tool. It is not legal advice, an audit, or a formal compliance certification. Results are indicative. For a formal assessment, engage a qualified DORA advisor.
Answer 10 questions. 90 seconds. Free. Built by an EU-native team — based on DORA Regulation (EU) 2022/2554 Articles 28, 29, 30.
This calculator is an educational self-assessment tool. It is not legal advice, an audit, or a formal compliance certification. Results are indicative. For a formal assessment, engage a qualified DORA advisor.
About the calculator, the scoring, and what to do next.
A DORA readiness assessment is a structured self-evaluation of how well an organisation meets the ICT third-party risk management obligations set out in the Digital Operational Resilience Act (Regulation (EU) 2022/2554), particularly Articles 28, 29, and 30. It covers the maintained register of ICT providers, criticality classification, pre-contractual risk assessment, mandatory contractual provisions, exit strategies, sub-contracting visibility, concentration risk, SLA monitoring, incident linkage, and board oversight.
The calculator is mapped to DORA Articles 28 (general principles, register, pre-contractual risk assessment, contractual provisions, exit strategies), 29 (concentration risk at entity level), and 30 (mandatory contract provisions for ICT third-party services, including data access, audit rights, sub-contracting consent, and incident reporting). It is built on the published DORA Level 1 text and the European Supervisory Authorities' Regulatory Technical Standards.
Each question is scored on a 0, 4, 7, or 10 point scale, giving a total of 0 to 100. Below 40 is Red, indicating supervisory exposure and material gaps that a national competent authority would likely flag in an inspection. 40 to 69 is Amber, indicating partial coverage with material gaps still to close. 70 and above is Green, indicating an audit-ready posture suitable for a DORA supervisory review, with maintenance-level work remaining.
No. The DORA Readiness Calculator is a free, educational self-assessment tool. It is not legal advice, an audit, or a formal compliance certification. Results are indicative and intended to help procurement, compliance, and risk teams identify priority gaps. For a formal assessment, organisations should engage a qualified DORA advisor or run a full audit against the DORA Level 1 text and the European Supervisory Authorities' Regulatory Technical Standards.
No. The calculator runs entirely in the browser. No answers, email addresses, or identifying data are transmitted to FiorLab or any third party. There are no analytics calls or tracking pixels on the calculator itself. If you would like a written follow-up or a guided walk-through of your gaps, you can voluntarily email hello@fiorlab.com — but nothing is sent automatically.
We built this calculator because every procurement and compliance team we speak to is staring at the same DORA gap-analysis exercise — and most are doing it in a spreadsheet at 9pm on a Sunday. There's no need for that.
Ten questions, mapped honestly to the regulation, no email gate. Use it as a board-prep tool. Use it to scope your next audit. Use it to argue for the budget you actually need. Then, if FiorLab can help close the gaps, we're an email away.
— The FiorLab team, Dublin