First introduced by the EU on 10 December 2024, the Cyber Resilience Act (CRA) aims to protect both consumers and businesses across Europe when purchasing software or hardware products with a digital component.
CE markings
Achieving CE markings for their products has, for many years, been an essential requirement for all machine builders selling their products in the EU.
Historically, a key part of this has involved adherence to the physical safety obligations contained with the EU’s Machinery Directive (2006/42/EC).
However, from late 2027, machines sold in relevant European markets must also be protected from cybersecurity attacks in line with the Machinery Regulation (2023/1230) – which is set to replace the Machinery Directive – and the CRA itself.
As a result, affected products will no longer be eligible for sale in the EU from the deadline date without a compliant CE marking.
Read the full article in DPA's March 2026 issue
Image courtesy of Shutterstock