Tips for implementing the CRA

The Cyber Resilience Act (CRA) contains strict cybersecurity requirements for products with digital elements. The regulation was adopted at the end of 2024 and will be directly applicable in all EU member states from 2027. Detailed information on the requirements under the CRA can be found here. For an efficient implementation of the CRA, companies are in need of a holistic concept for cybersecurity compliance.

Check if you are affected

The CRA applies to all products with digital elements on the European market and classifies them into risk categories. However, a few product types are exempt from the CRA. Check now if your products are affected with our Quick-Check!

Clarifying your role

The CRA focuses on the manufacturers of products with digital elements. They must ensure that their products meet the requirements of the regulation. However, there are also obligations for distributors and importers. Companies must therefore determine the role in which they operate on the market.

Implementing requirements

The CRA requires manufacturers of products with digital elements to meet certain requirements for cybersecurity and vulnerability management. Security updates must be provided free of charge. For distributors and importers, graded obligations apply.

Monitoring and reporting

Both the legal situation and products with digital elements are subject to change, which may be accompanied by changing requirements. Companies must therefore continuously monitor both the legal situation and product development and respond to relevant changes.

CRA Quick-Check

The CRA contains requirements for the cybersecurity of products with digital elements that are placed on the European market. You can use our free Quick-Check to assess whether your products are affected.

About us

100% expertise. 0% nonsense. We have extensive experience in cybersecurity compliance management and combine consulting practice and research in cybersecurity law. Our advice is: Smart. Efficient. Spot-on.

Attorney at law Stefan Hessel, LL.M.

Salary Partner and Head of Digital Business at reuschlaw

Attorney at law Christoph Callewaert

Senior Associate at reuschlaw

Contact

Do you have questions about the CRA or need support? We are happy to assist you. Simply write us - or give us a call! We will get back to you as soon as possible.

  • Address

    Berlin office
    Joachimsthaler Str. 34
    10719 Berlin
  • Phone

    +49 30 / 2332 895 0
  • Email

    info@reuschlaw.de
  • Address

    Saarbrücken office
    Stengelstr. 1
    66117 Saarbrücken
  • Phone

    + 49 681 / 859 160 0
  • Email

    info@reuschlaw.de