The EU Cyber Resilience Act (Regulation 2024/2847) is a comprehensive legislative framework that mandates common cybersecurity standards for hardware and software products with digital elements. It requires manufacturers to prioritise “security by design”, deliver regular security updates, and manage vulnerabilities throughout a product’s entire lifecycle.
You can read our Vulnerability Disclosure Policy here. It also includes a link to a form for reporting any product vulnerability.
