Final Text, European Cyber Resilience Act



Cyber Resilience Act, Article 37 - Requirements relating to notifying authorities


1. A notifying authority shall be established in such a way that no conflict of interest with conformity assessment bodies occurs.


2. A notifying authority shall be organised and shall function so as to safeguard the objectivity and impartiality of its activities.


3. A notifying authority shall be organised in such a way that each decision relating to notification of a conformity assessment body is taken by competent persons different from those who carried out the assessment.


v4. A notifying authority shall not offer or provide any activities that conformity assessment bodies perform or consultancy services on commercial or competitive basis.


5. A notifying authority shall safeguard the confidentiality of the information it obtains.


6. A notifying authority shall have a sufficient number of competent personnel at its disposal for the proper performance of its tasks.



Cyber Resilience Act Final Text


You may also visit:

NIS 2 Directive

Digital Operational Resilience Act (DORA)