<img src="https://secure.52enterprisingdetails.com/787683.png" style="display:none;">
 
0 of 14 answered
Institutional DR · Compliance Assessment

How resilient is your crypto operation and could you prove it?

Fourteen questions on key management, recovery readiness and regulatory alignment. Your resilience score updates as you answer, and each gap is mapped to the regulation that expects you to have closed it.

MiCA · Arts. 70 & 75 DORA · Arts. 11, 12 & 28 Key management & SPOF Recovery testing
 
🔒 Answer all 14 questions to unlock your full risk profile, regulatory mapping and recommendations.

Your risk profile

 

What the regulation expects

The requirements this assessment maps against. Not legal advice — but a useful starting point for your compliance conversation.

MiCA Art. 70Reg. (EU) 2023/1114

Safeguarding of clients' crypto-assets and funds. CASPs holding client assets must have adequate arrangements to safeguard ownership rights and prevent the use of client assets for their own account — which presumes those assets remain recoverable.

MiCA Art. 75Reg. (EU) 2023/1114

Custody and administration of crypto-assets. Custodians must operate a custody policy and are liable to clients for the loss of crypto-assets resulting from incidents attributable to them — up to the market value of what was lost. Losing keys is losing the assets.

DORA Art. 11Reg. (EU) 2022/2554

Response and recovery. Financial entities must maintain ICT business continuity and response-and-recovery plans — documented, board-owned and tested, including for scenarios where critical functions like signing capability are lost.

DORA Art. 12Reg. (EU) 2022/2554

Backup policies, restoration and recovery. Backup systems must be physically and logically segregated from source ICT systems, with documented restoration procedures and recovery methods. A backup that lives with production isn't segregation.

DORA Art. 28Reg. (EU) 2022/2554

ICT third-party risk. Entities must assess concentration risk in their ICT providers. If one vendor both operates your wallet infrastructure and holds its only recovery path, that's exactly the concentration the regulation is pointing at.

Close the gaps before a regulator — or an incident — finds them.

CoinCover provides independent, third-party disaster recovery for institutional digital asset operations: sharded key backups held outside your infrastructure, segregated from your signing provider, independently attested and recoverable on demand.

Talk to CoinCover →
—
Risk profile
Disclaimer. This assessment is an indicative, educational tool provided by CoinCover. It does not constitute legal, regulatory or compliance advice, and completing it does not establish compliance or non-compliance with MiCA, DORA or any other framework. Regulatory references are simplified summaries — always consult your legal and compliance advisers. © CoinCover.