Cyber Resilience Act to be In Effect in 2025 across EU
The Council of the European Union has approved the Cyber ​​Resilience Act (CRA). The new law sets binding requirements for the cybersecurity of digital products sold in the EU, such as software and IoT devices so that consumers and businesses can safely use digital products, such as webcams and smart TVs that are part of the Internet of Things (IoT).
The main tenets of the Act include:
-Mandatory cybersecurity requirements for digital products, such as software and IoT devices, from the development phase
-Responsibility for manufacturers, importers, and distributors to ensure that products are safe and that they remain safe
-Mandatory security updates and vulnerability reporting
-Fines of up to 2.5 percent of global turnover for companies that fail to comply with regulations
-Non-commercial open-source software is exempt since this software is usually developed without profit motive
The CRA will come into effect in 2025. Read more about this story on our LinkedIn page
The main tenets of the Act include:
-Mandatory cybersecurity requirements for digital products, such as software and IoT devices, from the development phase
-Responsibility for manufacturers, importers, and distributors to ensure that products are safe and that they remain safe
-Mandatory security updates and vulnerability reporting
-Fines of up to 2.5 percent of global turnover for companies that fail to comply with regulations
-Non-commercial open-source software is exempt since this software is usually developed without profit motive
The CRA will come into effect in 2025. Read more about this story on our LinkedIn page