Source: OJ L, 2025/532, 2.7.2025Current language: EN
- Digital operational resilience in the financial sector
ICT third-party service providers
- RTS on subcontracting ICT services
Article 6 Termination of the contract between the financial entity and the ICT third-party service provider
Summary What does Article 6 of the RTS on subcontracting ICT services say?
This article directly builds on Articles 4 and 5, which set out the contractual requirements and change notification process for subcontracting arrangements.
Article 6 provides the enforcement mechanism for those requirements: the right for financial entities to terminate their contractual arrangement with an ICT third-party service provider where that provider has acted outside the agreed boundaries.
Essentially, it gives financial entities the contractual exit rights they need when a provider ignores objections, bypasses the notice period, or subcontracts services without authorisation.
Important points:
- Include termination rights in your contractual arrangements with ICT third-party service providers to cover the scenarios set out in this article.
- The three grounds for termination all relate to provider misconduct: ignoring objections to material changes, implementing changes before the notice period expires, or subcontracting services not explicitly permitted under the contract.
- All three termination triggers concern subcontracting that supports critical or important functions, meaning this protection is specifically focused on the highest-risk arrangements.
Springlex's summary of the article, a reading aid, not a substitute for the legal text.
The financial entity shall have the right to provide in the contractual arrangement with the ICT third-party service provider that the contractual arrangement is to terminate in each of the following cases:
the financial entity has objected to material changes to the subcontracting arrangements supporting critical or important functions and requested for modifications to those arrangements, but the ICT third-party service provider has nevertheless implemented those material changes;
the ICT third-party service provider has implemented material changes to subcontracting arrangements supporting critical or important functions or material parts thereof before the end of the notice period without approval by the financial entity;
the ICT third-party service provider subcontracts an ICT service that supports a critical or important function or material part thereof not explicitly permitted to be subcontracted by the contract between the financial entity and the ICT third-party service provider.
Relevant recitals
Recital 11 Notification of changes and right to terminate
To enable financial entities to assess the risks associated with subcontracting arrangements or material changes thereto, ICT third-party service providers should inform the financial entities to which they provide ICT services of all such new arrangements or changes well before such arrangements or changes start to apply. For the same reason, financial entities should have the right to terminate the contract with the ICT third-party service provider where the outcome of their risk assessment shows that the new arrangements or material changes carry a level of risk that exceed their risk tolerance.
Springlex and this text is meant purely as a documentation tool and has no legal effect. No liability is assumed for its content. The authentic version of this act is the one published in the Official Journal of the European Union.
Definition
ICT third-party service provider
Definition
ICT services
Definition
critical or important function