Companies that create connected devices will have to fix cyber vulnerabilities as soon as they become aware of them under the EU Cyber Resilience Act, which was finalized during the trilogue process 30 Nov., Euractiv reports. The parties also agreed that nonprofit groups that sell open-source software and reinvest those funds into nonprofit activities would be excluded from certain documentation standards.
EU groups reach agreement on connected products law
Related stories
US Senate abandons proposed state AI law moratorium as compromise falls through
Navigate 2025: DOJ's antitrust unit zeroes in on consumer protection, innovation
Emerging trends, insights from public enforcement of US state privacy laws
Notes from the IAPP Canada: Building momentum to address youth privacy issues
How proposed AI enforcement moratorium cuts into US state-level powers
