Quick reminder: the CRA should apply from 11 December 2027, with the exception of the reporting obligations concerning actively exploited vulnerabilities and severe incidents having an impact on the security of products with digital elements, which should apply from 11 September 2026. The provisions on notification of conformity assessment bodies (CAB) should apply as of 11 June 2026.