On 14 November, ESBG submitted its input to the European Commission’s call for feedback on the proposed Cyber Resilience Act, which was published in September. All feedback received will be summarised by the Commission and presented to the European Parliament and Council with the aim of feeding into the legislative debate.
On 15 September, the Commission published a proposal for a Cyber Resilience Act, which aims to protect consumers and businesses from products with inadequate security features. The Cyber Resilience Act introduces mandatory cybersecurity requirements for products with digital elements. It will ensure that digital products, such as wireless and wired products and software, are more secure for consumers across the EU. In addition to increasing the responsibility of manufacturers by obliging them to provide security support and software updates to address identified vulnerabilities, it will enable consumers to have sufficient information about the cybersecurity of the products they buy and use.
In the position paper, ESBG members welcome the Commission proposal and support the goal of only having secure software on the internal market. However, members believe that the Cyber Resilience Act leaves too much room for interpretation regarding its scope of applicability and therefore proposes that the Commission should make a clear scope-statement that would dissolve any uncertainty whether the software developed, operated, or marketed by financial institutions is in scope of this Act.
In addition, there are vertical initiatives that already regulate the cyber-resilience of hardware and software products used by certain sectors. This is the case of the Digital Operational Resilience Act (DORA) for the financial sector, a regulatory framework specifically designed and developed to ensure the digital operational resilience of the financial sector. Extending the scope of the Cyber Resilience Act to products manufactured by credit institutions may place additional burdens onto banks, on top of the already existing tight regulatory corset.
related
February 3, 2023
Advocating on the EU deforestation regulation
What lessons can be learnt from a French diplomat from the XIX century?
January 11, 2023
ESBG responds to the ESAs call for evidence on greenwashing
Therefore, in the interest of customers, banks, saving banks and issuers of financial products, ESBG
October 5, 2022
Joint letter to Commissioner McGuinness on the EFRAG consultation regarding its first set of draft ESRSs
On 27 September, the ESBG, together with the European Banking Federation (EBF), the European Association of Co-operative Banks (EACB), Insurance Europe, Accountancy Europe, Business Europe and…
September 9, 2022
ESBG response to the EFRAG consultation on its first set of draft ESRSs calls to ensure levelled global playing field
In its response to the European Financial Reporting Advisory Group (EFRAG) public consultation on the first set of Draft EU Sustainability Reporting Standards (ESRSs), the European Savings and Retail…
September 7, 2022
EU Taxonomy minimum safeguards: Criteria for the application of external checks should be further defined
The European Savings and Retail Banking Group submitted its final response to the Platform for Sustainable Finance (PSF) consultation on its draft report on minimum safeguards (MS). In its response,…
August 3, 2022
International Sustainability Standards Board consultation on Sustainability Disclosures
The International Sustainability Standards Board (ISSB) has been established at COP26 with the purpose of developing a comprehensive global baseline of sustainability disclosures for the capital…
May 27, 2022
ESBG calls for more feasible rules on the new corporate sustainability due diligence
In its response to the European Commission call for feedback on the proposal for a Directive on Corporate Sustainability Due Diligence, the European Savings and Retail Banking Group (ESBG) suggests…
April 28, 2022
ESBG response to ESMA’s consultation on guidelines of MiFID II suitability requirements
ESBG's response to the European Securities and Market Authority (ESMA) consultation on some MiFID II sustainability aspects. European banks calls for clear procedures and to avoid unnecessary…
March 3, 2022
Strengthening the quality of corporate reporting and its enforcement in the EU
The consultation aims to evaluate the impact of the EU framework on the three pillars of high quality and reliable corporate reporting: corporate governance, statutory audit and supervision. This…
February 25, 2022
European Commission Banking Package proposal
ESBG responded to the European Commission “have your say" consultation on the Banking Package proposal.
