Description

Rules on notifying and appointing conformity assessment bodies become applicable to EU Member States. Member States must have notified bodies in place to assess products with digital elements for cybersecurity compliance.

Requirements

Monitor Member State conformity assessment body designations
Identify applicable notified bodies for product assessments
Begin pre-assessment preparations for products with digital elements
Review product cybersecurity documentation
Engage with designated conformity assessment bodies

Applicable To

Product ManufacturersIoT Device ManufacturersSoftware PublishersConformity Assessment Bodies

Penalty Information

⚠Products not meeting CRA requirements after full enforcement (Dec 2027) face fines up to EUR 15 million or 2.5% of global annual turnover.

105

days remaining

June 11, 2026

Share:X in @

Framework

EU CRA

EU Cyber Resilience Act

Related EU CRA Deadlines

EU CRA - Vulnerability Reporting Obligations Begin
September 11, 2026

EU CRA - Conformity Assessment Body Designation