Cybersecurity Risk Assessment (Art 13)

The Cyber Resilience Act (EU) 2024/2847 mandates a cybersecurity risk assessment under Article 13, requiring manufacturers and importers of digital products to identify, evaluate and mitigate security risks throughout the product lifecycle. The assessment must be documented, regularly updated, and made available to competent authorities and users to ensure compliance and enhance overall cyber resilience.