DORA Premium Library · 2026 Edition

DORA compliance,
ready-to-deploy.

Eleven practitioner-built products that turn the regulation into audit-ready artefacts: the master Register of Information workbook, the five pillar playbooks, board reporting templates, and the European benchmark study. Instant download, lifetime updates.

11Products
178+Pages of guidance
4.8/5Avg rating
1,345Reviews
Instant email delivery Lifetime updates included Secure Stripe checkout Invoiced · VAT-compliant
Best value

The complete DORA toolkit.

Every product in this catalogue, bundled. The board-ready answer to "where do we stand on DORA?"

★ Best value — save €175

DORA Complete Toolkit — Executive All-in-One

The executive bundle. All five pillar playbooks + the Benchmark report, plus a dedicated 12-page Executive All-in-One: strategic implications, ROI model, 3-year roadmap, governance and a 3-page board-reporting pack.

  • Executive All-in-One (12p) — strategic / ROI / board pack
  • Benchmark Report 2026 (20p)
  • ICT Risk Management Playbook — Pillar 1 (22p)
  • Incident Response Framework — Pillar 2 (21p)
  • TLPT Implementation Guide — Pillar 3 (20p)
  • Third-Party Risk Playbook — Pillar 4 (20p)
  • Information & Intelligence Sharing — Pillar 5 (19p)
  • 20 executive KPIs + risk-appetite framework
  • 3-year roadmap by quarter
€199 €374
Save €175 vs buying separately Get the bundle — instant download
Stripe secure checkout · PDF + Excel + Word
For consultants · save €266

DORA Consultant Kit — Complete Practice Starter

Launching a DORA consulting practice? Get the All-in-One bundle, RoI pack, policies and board templates plus the Certified DORA Advisor certification included — €615 of products in one kit.

€349 €615
See the Consultant Kit →
Pillar series

One playbook per DORA pillar.

Article-by-article control catalogues, sample policies, KRIs, runbooks and report templates. Built by EU practitioners for EU practitioners. All five are bundled in the All-in-One toolkit.

1
Implementation

ICT Risk Management Playbook — Pillar 1

Articles 5–16

22 pages Updated May 2025 4.9 (143)

Articles 5–16. The full Pillar 1 operating manual: control catalogue, sample policy library, KRIs, second-line testing patterns and board-reporting templates. Includes the simplified regime for smaller entities.

Inside the playbook

  • 40+ controls mapped to Articles 5–16
  • Sample policy library (GOV / ID / PR / DT / RR / LE)
  • 25 KRIs with target ranges and trigger logic
  • Second-line testing patterns and assurance cycle
  • Board-reporting templates (quarterly + annual)
€69
Lifetime updates
Buy & download
2
Implementation

Incident Response & Reporting Framework — Pillar 2

Articles 17–23

21 pages Updated May 2025 4.8 (234)

Articles 17–23. Five operational runbooks (ransomware, DDoS, third-party outage, data integrity, insider) plus the full ITS reporting template walkthrough with a worked example for a fictional bank.

Inside the playbook

  • 5 incident-type runbooks with decision trees
  • Major-incident classification decision tree
  • ITS template walkthrough with worked example
  • Full draft initial / intermediate / final reports
  • 4-drill exercise kit (tabletop + functional)
€69
Lifetime updates
Buy & download
3
Implementation

TLPT Implementation Guide — Pillar 3

Articles 24–27

20 pages Updated May 2025 4.9 (143)

Articles 24–27. TIBER-EU aligned. 5 phases, white-team operating model, RFI templates for Threat Intelligence + Red Team providers, scenario library, supervisory attestation pack.

Inside the playbook

  • 5 TLPT phases mapped to TIBER-EU
  • White-team operating model and RACI
  • RFI templates for TI + Red Team providers
  • Rules of Engagement (RoE) template
  • 8-archetype attack scenario library
€69
Lifetime updates
Buy & download
4
Templates

Third-Party Risk Playbook — Pillar 4

Articles 28–44

20 pages Updated May 2025 4.7 (298)

Articles 28–44. Article 30 clause library with sample wording, Register of Information build guide, provider scoring matrix, exit playbooks by service type, hyperscaler negotiation playbook.

Inside the playbook

  • Article 30 12-clause library with sample wording
  • Register of Information build guide + data-quality framework
  • Provider scoring & criticality classification matrix
  • Exit playbooks by service type (SaaS / IaaS / outsourcing)
  • Negotiation playbook for hyperscalers
€69
Lifetime updates
Buy & download
5
Implementation

Information & Intelligence Sharing Playbook — Pillar 5

Article 45

19 pages Updated Jun 2026 4.8 (0)

Article 45. The voluntary-but-governed pillar made operational: trusted communities (FS-ISAC, CSIRTs, MISP), the competent-authority notification duty, TLP v2.0 handling, GDPR & competition safeguards, a sharing operating model and 10 KRIs.

Inside the playbook

  • Article 45 conditions & the CA notification duty (Art. 45(3))
  • Trusted-community landscape — FS-ISAC, CSIRTs, ENISA, MISP
  • Traffic Light Protocol (TLP v2.0) handling rules
  • GDPR, competition-law & confidentiality safeguards
  • Sharing arrangement template & membership register
€69
Lifetime updates
Buy & download
Ready-to-deploy

Templates the auditors already understand.

Excel, Word and PowerPoint artefacts. Open them, fill the placeholders, deliver to your management body or supervisor.

Templates

DORA Register of Information Pack

Excel + PDF + JSON + SQL Updated May 2026

The most demanded artefact under DORA. A master Excel workbook aligned to the ITS on the Register of Information (Commission Implementing Regulation 2024/2956), with a Build Guide PDF, JSON Schema and SQL DDL for GRC import.

What you get

  • Master Excel workbook with 16 RT tabs (RT.01–RT.07)
  • Build Guide PDF — 18 pages of practitioner guidance
  • JSON Schema (draft 2020-12) for validation
  • SQL DDL for GRC / data-warehouse import
  • Data-quality framework and validation rules
€149
Lifetime updates
Buy & download
Templates

DORA Policy & Procedures Pack

Word (.docx) ZIP Updated May 2026

Ten editable Word policy templates covering the operating chassis of any DORA-compliant ICT framework. Each one cites the relevant DORA Articles and includes a document-control table.

What you get

  • ICT Risk Management Policy
  • Incident Response Plan
  • ICT Business Continuity Policy
  • Third-Party Risk Management Policy
  • Information Security Policy
€69
Lifetime updates
Buy & download
Templates

DORA Board Pack Templates

PowerPoint + Word ZIP Updated Jun 2026

Everything a CRO or CISO needs to brief the management body on DORA. Quarterly deck (18 slides, full speaker notes) plus six Word templates: annual CRO letter, board minutes, one-page KPI scorecard, risk-appetite statement, decision log and annual board attestation.

What you get

  • 18-slide PowerPoint — Quarterly Board update
  • Full speaker guidance notes on every slide
  • One-page KPI scorecard across all 5 pillars (Word)
  • ICT risk-appetite statement template — Art. 6(8)(b) (Word)
  • Board decision log & risk-acceptance register (Word)
€49
Lifetime updates
Buy & download
Research

Where the market actually stands.

The single research deliverable to bring to your ExCo and Board. Where your peers are, where the supervisor expects you, and how to close the gap in 90 days.

Research · 20 pages

DORA Compliance Benchmark Report 2026

Maturity framework, cohort positions and KPI dashboard for European financial institutions. Where the market actually stands on the 5 DORA pillars in 2025, and how to move up a tier in 90 days.

5
Maturity levels
20
Live KPIs
4
Sectors covered
90d
Move-up plan
€49
One-time · lifetime updates
Get the benchmark
Secure Stripe checkout
A la carte vs full library

Buy what you need — or take it all.

Individual product (€49 — €199)

  • One report or template pack of your choice
  • Instant PDF/Excel/Word delivery by email
  • Lifetime updates on that specific product
  • Stripe secure checkout, EU VAT invoice

Ideal if you need to fix one specific gap (e.g. just the Register of Information, just the Board pack).

Complete bundle (€199)

  • All 6 reports (5 pillar playbooks + benchmark) + the executive All-in-One
  • Save €175 vs piecemeal purchases
  • Lifetime updates on every product
  • Cross-pillar consistency (one method, end-to-end)
  • Strategic ROI model + 3-year roadmap

Ideal if you are running a full DORA programme — one source of truth for ICT risk, incidents, testing and third-party.

Frequently asked

Practical questions.

How fast is delivery? +
Instant. The Stripe checkout triggers an automated email with a secure download link within minutes of a successful payment. There is no waiting list and no account to create — the .pdf, .xlsx or .docx file is in your inbox.
Are the products updated when DORA evolves? +
Yes. Every purchase includes lifetime updates. When new RTS / ITS are published or ESA Q&As clarify a control, we revise the relevant product and email you the new version automatically.
Can I buy a single pillar playbook and add others later? +
Yes — each pillar playbook is sold independently. You can also upgrade to the complete bundle later; contact us and we'll credit any earlier single-pillar purchase.
Are these documents EU-specific? +
Yes. The products are aligned with Regulation (EU) 2022/2554 (DORA) and its delegated/implementing acts, including the final RTS on ICT risk (Reg. 2024/1774), RTS on incident classification (Reg. 2024/1772), RTS on policy framework for ICT third-party (Reg. 2024/1773) and ITS on the Register of Information (Reg. 2024/2956). They reference the relevant ESA Q&As where applicable.
Who builds them? +
EU-based ICT risk and compliance practitioners with hands-on experience implementing DORA in banks, insurers, payment institutions and investment firms. The products are reviewed against the final regulatory texts before publication.
Can I get an invoice for my company / claim VAT? +
Yes. Stripe issues a compliant EU VAT invoice automatically. If you provide a valid VAT number at checkout (or via our enterprise procurement form), reverse-charge applies for intra-EU B2B sales.
What format are the files? +
Reports are PDF. Templates are native Microsoft Office files (.xlsx, .docx, .pptx) for direct editing — no macros, no add-ins. Excel files open in LibreOffice Calc and Google Sheets without conversion loss.
Refund policy? +
Because these are digital downloadable products delivered immediately on purchase, sales are final once the file has been emailed. If you have not yet downloaded the file, contact us within 14 days for a full refund.

Equip your DORA programme with the right artefacts.

Eleven products, one method, EU-built. Pay once, update for life — and skip the months of internal scaffolding.

Get the complete bundle — €199 Talk to us (enterprise / procurement)

How Compliant Is Your Institution?

Take our free 5-minute assessment and get an instant DORA compliance score with personalised recommendations.

Get Your Free DORA Score Join Free Monthly Webinar