Executive Compliance Guide: Cyber Resilience Act | Navigating EU Law
Executive Compliance Guide: Cyber Resilience Act
Navigating EU Law
02. júla 2026
Globálne
Globálne
Globálne
The Cyber Resilience Act (CRA) introduces mandatory cybersecurity requirements for connected hardware and software products sold in the EU. It requires manufacturers, importers, and distributors to embed security throughout the product lifecycle, manage vulnerabilities, report serious incidents, and demonstrate compliance through CE marking.
Since its entry into force on 10 December 2024, the CRA has been reinforced by additional EU actions, including:
Technical standards to help businesses implement and demonstrate compliance with the CRA's cybersecurity requirements
Identification of higher-risk digital products that will be subject to stricter conformity assessment and compliance requirements
The Digital Omnibus proposal, published in November 2025, to streamline incident reporting under the CRA, NIS2, and GDPR
Guidance clarifying the CRA’s application to open-source software, remote data processing, support periods, and overlap with other EU rules
Spoločnosť Eversheds Sutherland vynakladá všetku primeranú starostlivosť, aby zabezpečila, že materiály, informácie a dokumenty vrátane, ale nielen, článkov, bulletinov, správ a blogov (ďalej len "materiály") na webovej stránke Eversheds Sutherland sú presné a úplné. Materiály sa však poskytujú len na všeobecné informačné účely, nie na účely poskytovania právneho poradenstva a nemusia nevyhnutne odrážať súčasné právne predpisy alebo nariadenia. Materiály by sa nemali chápať ako právne poradenstvo v akejkoľvek veci.