About

About Solar

Discover solar

About SolarPower Europe

Our story Team Organisation Careers 40 Years Around the Sun
Interests

Workstreams

Manufacturing Land Use & Permitting Product Sustainability Supply Chain Sustainability Grids & Flexibility Markets & Investments Lifecycle Quality Buildings & Prosumers Digitalisation Renewable Hydrogen & Electrification Global Markets

Topics

International Cooperation Corporate Sourcing Solar Mobility Research & Innovation Solar Photo Competition Solar Skills

Our projects

Projects & Grants

Fundraisers

Solar Supports Ukraine
Advocacy

Explainers

European Green Deal National Energy and Climate Plans EU Solar Strategy EU Elections 2024

Positions

Policy letters Position papers

Campaigns

SolarSaves #MakeSolarEU European Solar Day Let's FLEX

Platforms

Electrification Alliance RE-Source Platform Renewable Hydrogen Coalition Solar Stewardship Initiative Solar Best Practices SolarWorks Agrisolar Europe Energy Storage Coalition The International Solar Manufacturing Initiative European Inverter Forum
Insights

Featured insights

The Sun Times: A SolarPower Europe Magazine

SolarPower Europe insights

Market outlooks Thematic reports Interactive data Podcasts Webinars
Solar Stream Events
Membership

Membership

Membership benefits Meet our members Become a member
 

Cyber Resilience Act

11 May 2023: SolarPower Europe Position Paper

12 June 2023

SolarPower Europe Position Paper on the Cyber Resilience Act (CRA)

Streamline conformity assessment. Enforce intellectual property protection. Exercise due diligence. Extend timeline for reporting obligations

Read the position paper now

SolarPower Europe welcomes the Cyber Resilience Act, which establishes high cybersecurity requirements, and common guidelines for all manufacturers – in particular inverter manufacturers. However, we would like to recommend several amendments to further increase the consistency and effectiveness of the Commission's proposal.

Third-party assessments

The conformity assessment procedure must be streamlined, clarified, transparent and time-bound.

1

Intellectual property

The protection of intellectual property should be enforced.

2

Due diligence

The requirement to exercise due diligence must be specified.

3

Security

The EU must specify security requirements for products with digital elements in Annex I.

4

Timeline

The timeline for reporting obligations should be extended to 72 hours.

5

Vulnerability handling

Regulators should extend vulnerability management requirements beyond 5 years

6
Interested in becoming a member?

Have a look at the membership pages to find out all about your benefits

Why become a member?