The European Commission has launched a call for evidence to support the upcoming revision of the Cybersecurity Act (CSA), planned for Q4 2025. This initiative is part of the 2025 Commission Work Programme aimed at simplifying the EU cybersecurity regulatory framework, strengthening ENISA’s role, and...
Key takeaways from the meeting based on ENISA’s presentations and discussions with participants. Download document Executive summary EU Cybersecurity Strategy Cyber Solidarity Act & Cyber Reserve EUCC EUCC Implementation Development of Protection Profiles (PPs) Interplay with the Cyber Resilience Act (CRA) Developing a Standardized PP for CRA...
After a year of inaction, the issue of sensitive data security is regaining attention as tensions between Europe and the U.S. rise. The European Cybersecurity Certification Scheme for Cloud Services (EUCS) was put on hold last year. Its goal is to set common cloud data storage...
The Competitiveness Compass is the European Commission’s strategic framework to boost innovation, technology development, and sustainability while positioning Europe as a leader in future industries. Announced on 27 November 2024 by Commission President Ursula von der Leyen, it was stated as the first major initiative...
On February 4, the European Commission published detailed guidelines outlining prohibited AI practices. The document consolidates feedback from public consultations, opinions from Member States via the AI Office, and input from the European Parliament's Working Group on the implementation and enforcement of the AI Act...
1. Overview The European Commission (EC) is working on the Architecture and Reference Framework (ARF) Development Plan for 2025. This newsletter highlights the main envisaged provisions. The ARF is to establish high level requirements for the EUDI Wallet ecosystem, as well as the technical specifications, standards, and...
Analysis Note to Eurosmart’s members: The European Commission has drafted a strategy to develop and align Standards and Technical Specifications (STS) for the EUDI Wallet. This strategy, currently under review by the Cooperation Group composed of Member States’ experts, has not yet been adopted or made...
European data protection authorities (EDPB) have requested clarifications on the latest version of the European Cybersecurity Certification Scheme for Cloud Services (EUCS), particularly regarding its compliance with the General Data Protection Regulation (GDPR). French data protection authority has expressed concerns about the absence of immunity criteria...
An updated version of the proposal for a Directive on adapting non-contractual civil liability rules to artificial intelligence has been leaked and was transmitted to the EU Council on July 24th. Dowload the document Main Objectives In the AI Act proposal, the Commission has introduced rules aimed at...
Entry into force and timeline As of 1 August, the EU AI Act is now in effect, aiming to foster responsible AI development and deployment within the EU. This Act addresses potential risks to citizens' health, safety, and fundamental rights. It sets clear requirements for AI...