• Scope revision: The ESMA Guidelines now exclude financial entities covered under the Digital Operational Resilience Act (DORA) Regulation. They focus on depositaries of Alternative Investment Funds (AIFs) and Undertakings for Collective Investment in Transferable Securities (UCITS) not subject to DORA.
• Purpose: The ESMA Guidelines aim to ensure consistent supervisory practices and uniform application of requirements for cloud outsourcing. They address risks and challenges in areas like outsourcing decisions, provider selection, activity monitoring, and exit strategies.

This update ensures the ESMA Guidelines remain relevant and applicable to entities outside DORA's scope without altering their content or requirements.

CySEC’s Circular 759 can be accessed here