John Timmons

The Cyber Resilience Act (the "CRA") entered into force on 10 December 2024 and applies in full from 11 December 2027. Manufacturers of in-scope products should start the compliance journey as soon as possible to avoid impacts to the product development cycle and non-compliance risk exposure. What is the CRA? The CRA is a new EU regulation that introduces mandatory cybersecurity requirements for hardware and software products. The key objectives of the CRA include: