EuroComply
Zarejestruj się
🇫🇮Suomi

Cyber Resilience Act Compliance in Finland

The CRA establishes cybersecurity requirements for products with digital elements sold in the EU. Manufacturers must ensure security by design and provide vulnerability handling.

How does CRA apply in Finland?

CRA applies in Finland under EU law with the same obligations as across the bloc — maximum fine €15M or 2.5% of global turnover. The national supervisory authority is the Tietosuojavaltuutetun toimisto (TSV), which handles enforcement, complaints, and notifications. Deadline: December 11, 2027.

  • Supervisory authority: Tietosuojavaltuutetun toimisto (TSV)
  • Maximum fine: €15M or 2.5% of global turnover
  • Key deadline: December 11, 2027
Supervisory authorityTietosuojavaltuutetun toimisto (TSV)
Maximum fine€15M or 2.5% of global turnover
Key deadlineDecember 11, 2027
Sectors affectedSoftware, IoT
Source: Tietosuojavaltuutetun toimisto (TSV)Reviewed:
Deadline

December 11, 2027

Max Fine

€15M or 2.5% of global turnover

Sectors Affected

Software, IoT, Hardware

Key CRA Obligations for Finland Businesses

  • Implement security by design
  • Provide security updates for product lifetime
  • Report actively exploited vulnerabilities
  • Maintain technical documentation
  • Conduct conformity assessment

Does CRA apply to your Finland business?

Find out in 2 minutes with our free regulation checker.

Check now — free

CRA in Other Countries

🇩🇪

Germany

🇫🇷

France

🇳🇱

Netherlands

🇪🇸

Spain

🇮🇹

Italy

🇦🇹

Austria

🇧🇪

Belgium

🇵🇱

Poland

🇸🇪

Sweden

🇮🇪

Ireland

🇵🇹

Portugal

🇩🇰

Denmark

🇨🇿

Czech Republic

🇷🇴

Romania

🇭🇺

Hungary

🇸🇰

Slovakia

🇧🇬

Bulgaria

🇭🇷

Croatia

🇬🇷

Greece

🇱🇺

Luxembourg

🇪🇪

Estonia

🇱🇻

Latvia

🇱🇹

Lithuania

🇸🇮

Slovenia

🇲🇹

Malta

View full CRA compliance guide

For informational purposes only. This is not legal advice — consult qualified legal counsel.