The European Commission invites you to take part in a public consultation on the EU Cybersecurity Act (CSA). Your feedback can help shape the next generation of EU cybersecurity policy.
What’s the EU Cybersecurity Act?
In force since 2019, the CSA:
- Strengthens the role of the European Union Agency for Cybersecurity (ENISA)
- Introduces an EU-wide cybersecurity certification framework to build trust in digital products, services, and processes
As part of its 2025 work programme, the Commission will publish a Digital Package in Q4 2025, including an evaluation and review of the CSA.
Why your voice matters
On 11 April 2025, the Commission launched a public consultation open to everyone—whether you're:
- A business or public authority
- A university or research institution
- An NGO or civil society group
- Or simply a concerned citizen
Your insights will help evaluate how the CSA has worked in practice and whether it remains fit for purpose in today’s fast-changing digital landscape.
What this consultation aims to do
- Reassess ENISA’s mandate to ensure it meets current and future cybersecurity needs.
- Improve the EU Cybersecurity Certification Framework to enhance digital resilience and trust.
- Simplify EU cybersecurity legislation to make it more practical, accessible, and business-friendly—supporting a secure digital supply chain across Europe.
We want to hear from you
Please share your views on:
- How the Act has performed since 2019
- The effectiveness of the certification framework
- What improvements are needed to better protect people, businesses, and infrastructure
How to participate
📝 Submit your feedback via the link below
📅 Deadline: 20 June 2025
📧 Belgian stakeholders: You’re also invited to send your remarks to certification@ccb.belgium.be. Your input will help shape Belgium’s national position in upcoming legislative negotiations.