EU Declaration of Conformity
Template pursuant to Annex V of Regulation (EU) 2024/2847 (Cyber Resilience Act)
EU DECLARATION OF CONFORMITY
No. [DoC-YYYY-NNN]
1. Product with digital elements:
| Field | Value |
|---|---|
| Product Name | [Full product name] |
| Product Type | [Software / Firmware / Container Image / Embedded System] |
| Version | [Version number] |
| Model / Variant | [If applicable] |
| Batch / Serial Number | [If applicable] |
2. Name and address of the manufacturer and, where applicable, their authorised representative:
| Field | Value |
|---|---|
| Company | BAUER GROUP |
| Address | [Full postal address] |
| disclosure@cra.docs.bauer-group.com | |
| Website | [URL] |
| Authorised Representative (if applicable) | [Name, Address] or "Not applicable" |
3. This Declaration of Conformity is issued under the sole responsibility of the manufacturer.
4. Object of the declaration:
[Description of the product that is the object of this declaration, including identification features for traceability]
5. The object of the declaration described above is in conformity with the relevant Union harmonisation legislation:
| Legislation | Reference |
|---|---|
| Cyber Resilience Act | Regulation (EU) 2024/2847 |
| [Additional, if applicable] | [Reference] |
6. References to the relevant harmonised standards used or to the other technical specifications in relation to which conformity is declared:
| Standard / Specification | Description |
|---|---|
| [e.g. EN XXXXX:YYYY] | [Description, if already published] |
| CycloneDX v1.5 | SBOM format (OWASP) |
| ISO/IEC 29147:2018 | Vulnerability Disclosure |
| [Additional] | [Description] |
7. Where applicable: The notified body [Name, Identification Number] performed [Description of involvement] and issued the certificate [Reference number].
[Not applicable under Module A -- Internal Control]
8. Additional information:
| Field | Value |
|---|---|
| CRA Product Category | [Standard / Class I / Class II / Critical] |
| Conformity Assessment Procedure | [Module A / Module B+C / Module H / EUCC] |
| SBOM available | [Yes -- CycloneDX JSON] |
| Vulnerability reporting | disclosure@cra.docs.bauer-group.com / GitHub Security Advisories |
9. Support Period:
| Field | Value |
|---|---|
| Support Start | [Date of placing on the market] |
| Support End | [Date -- at least 5 years from placing on the market] |
| Type of Support | [Active Support / Security Support] |
Signed for and on behalf of:
BAUER GROUP
| Field | Value |
|---|---|
| Place | [Place] |
| Date | [YYYY-MM-DD] |
| Name | [First name and surname] |
| Role | [Role/Title] |
| Signature | _________________________ |
LEGAL BINDING EFFECT
This Declaration of Conformity is a legally binding document. By signing, the manufacturer confirms the conformity of the product with the requirements of the Cyber Resilience Act. False statements may result in sanctions (Art. 64 CRA: up to EUR 15 million or 2.5% of total worldwide annual turnover).