EU Cyber Resilience Act
Compliance for Taiwan Manufacturers
The CRA creates hard shipment-blocking deadlines for any connected product sold in the EU. We help Taiwan manufacturers understand what's required, close the gaps, and meet both deadlines.
Try the CRA Self-Assessment ToolTalk to WesleyTwo deadlines
The clock is already ticking
Article 14 — Vulnerability Reporting
First deadlineManufacturers must have a working Vulnerability Disclosure Policy (VDP) and be able to report actively exploited vulnerabilities to ENISA within 24 hours. This is the first hard deadline.
Full CRA Enforcement
All connected products placed on the EU market must be fully CRA-compliant. Non-compliant products face shipment blocks and fines up to €15M or 2.5% of global turnover.
What we deliver
Six deliverables, two deadlines covered
CRA Gap Analysis
Structured assessment of your current product against CRA requirements. Identifies gaps, prioritises remediation, and estimates effort.
Article 14 Compliance Package
Vulnerability Disclosure Policy (VDP), ENISA reporting SOP, and internal escalation procedure — ready for September 2026.
EU Authorized Representative
Arrangement of an EU AR as required for non-EU manufacturers placing products on the EU market.
Technical File & DoC
Technical documentation and EU Declaration of Conformity structured to meet CRA Annex requirements.
SBOM Preparation
Software Bill of Materials scoping and preparation aligned with CRA Article 13 requirements.
Compliance Roadmap
Prioritised action plan mapped to your product portfolio, team capacity, and both CRA deadlines.
Common questions
What Taiwan manufacturers ask us
Get started
Talk to Wesley directly
Every enquiry is handled personally. Usually responds within 24 hours on business days.
Your information is shared only with Wesley AI Inc. and will not be passed to third parties.