Eurosmart participated in the latest SCCG meeting held on 22 May 2026, where the European Commission and ENISA provided important updates on the future evolution of the EU cybersecurity certification framework. The discussions covered major policy and technical developments, including: the revision of the Cybersecurity Act...
In the context of the Cyber Resilience Act (CRA), European standardisation is progressing to support the implementation of its essential cybersecurity requirements and facilitate conformity assessment for digital products. CENELEC TC47X is developing a set of complementary draft standards aimed at providing a technical framework for...
Commission Publishes AUWP – Upcoming Key Digital Standardisation Requests On 19 March 2026, the European Commission published its Annual Union Work Programme (AUWP) for European Standardisation 2026 in the EU Official Journal. The Commission identifies the European standards and European standardisation deliverables that the Commission intends...
The European Commission published the final text of Commission Implementing Regulation (EU) 2025/2392, which establishes the technical descriptions of the categories of important and critical products with digital elements under the Cyber Resilience Act (CRA). https://eur-lex.europa.eu/legal-content/EN/TXT/PDF/?uri=OJ:L_202502392 These notes provide a synthetic comparison between: the final text adopted...
The European Commission is preparing a Digital Omnibus Package (Directive and Regulation) for adoption in Q4 2025 and has launched a call for evidence untill 14 October 2025. Q4 2025 – Call for Evidence The annonced purpose is to simplify and reduce administrative costs in the digital...
On 24 September 2025, the European Commission launched a public consultation on the revision of the EU Standardisation Regulation (Regulation (EU) No 1025/2012). See questionnaire This follows a Call for Evidence published in June/July 2025, which set out the Commission’s initial problem analysis and possible policy...
The European Commission has opened a public consultation on a draft Implementing Regulation amending Implementing Regulation (EU) 2024/482, which sets out the rules for the European Common Criteria-based cybersecurity certification scheme (EUCC). This initiative aims to clarify, modernise, and expand the scheme so that it remains...
The long-awaited Digital Package Simplification, also called the "Digital Omnibus" may soon be officially announced. According to Mlex, the European Commission is planning to present the proposal on 10 December 2025. The leaked information suggests the Commission could unveil the Digital Package Simplification along with two...
Key takeaways from the meeting based on ENISA’s presentations and discussions with participants. Download document Executive summary EU Cybersecurity Strategy Cyber Solidarity Act & Cyber Reserve EUCC EUCC Implementation Development of Protection Profiles (PPs) Interplay with the Cyber Resilience Act (CRA) Developing a Standardized PP for CRA...
After a year of inaction, the issue of sensitive data security is regaining attention as tensions between Europe and the U.S. rise. The European Cybersecurity Certification Scheme for Cloud Services (EUCS) was put on hold last year. Its goal is to set common cloud data storage...