European Union: European Commission opened consultation on draft implementing regulation providing technical descriptions for important and critical products with digital elements under Cyber Resilience Act (2024/2847)
Description
European Commission opened consultation on draft implementing regulation providing technical descriptions for important and critical products with digital elements under Cyber Resilience Act (2024/2847)
On 13 March 2025, the European Commission opened a consultation on the draft implementing regulation detailing the technical descriptions of essential and critical products with digital elements under the Cyber Resilience Act (Regulation (EU) 2024/2847), until 15 April 2025. The draft regulation defines the categories of such products, outlining the cybersecurity conformity assessment requirements applicable to manufacturers. It clarifies how a product’s core functionality determines whether it falls within the scope of heightened cybersecurity obligations, including stricter conformity assessments or potential certification under the Act. The regulation applies to a wide range of digital products and services, including cloud computing, telecommunications infrastructure, network equipment, software systems, artificial intelligence technologies, online communication platforms, digital marketplaces, and other products that involve data processing or transmission. The consultation invites stakeholders to provide feedback on these classifications and requirements.
Original source