News article | 07/19/2023 | 12:17
EU countries agreed today in Brussels on a negotiating mandate on cyber resilience law. The Cyber Resilience Act is legislation that ensures that digital products, including all hardware, software and components, meet essential cybersecurity requirements before they are placed on the European market. Manufacturers are required to provide free security updates and report digital vulnerabilities and incidents. This means that consumers and business users in the European Union (EU) can rely on secure digital products.
The Dutch firm has actively advocated for this legislation. The Cyber Resilience Act is an important part of the government’s approach to making digital products and services safer for everyone.
According to Minister Adriaansens (Economic Affairs and Climate), the amended legal text has been further improved compared to the initial proposal of the European Commission. For example, in the amended legal text, the support period for security updates is equal to the lifetime that consumers and businesses can reasonably expect from the product, instead of the maximum period of five years proposed by the European Commission. Measures are also included to help small and micro-enterprises comply with the legislation. Simplified formats for technical documentation, training and awareness initiatives are now part of the proposal.
According to the government, European consumers and business users can rest assured that the hardware and software they use in the future will be more secure thanks to the Cyber Resilience Act. This autumn, the Spanish Presidency of the Council of the EU will negotiate with the European Parliament on behalf of the Member States on the final legal text.