LIVE — Enforcement tracker · Obligations calendar · Transposition status — Updated weekly from EUR-Lex, Safety Gate, OEIL and 12 official sources View regulatory intelligence →
← SolidwareTools/CRACheck
Reg. (EU) 2024/2847 · CRAGenerate documentation
Vulnerability reporting mandatory from September 2026 · Full application: 11 December 2027. Without Annex VII technical documentation, your product cannot bear CE marking.
REGULATION (EU) 2024/2847 · CYBER RESILIENCE ACT

Complete technical documentation for your product with digital elements under Annex VII of the Cyber Resilience Act.

Regulation (EU) 2024/2847 requires manufacturers of products with digital elements to maintain technical documentation per Art. 31 + Annex VII, a cybersecurity risk assessment (Art. 13 + Annex I), an EU declaration of conformity (Art. 28) and more. CRACheck generates all 8 documents of the complete dossier in 30 minutes, in your browser, without sending your data to any server. €149 per product, one-time payment.

▶ demo · 2:30 minutes
8 PDF documents32 pages30 minutesReg. (EU) 2024/2847Browser-side

What you get: 8 professional documents in a ZIP.

Every document cites the article of the CRA it fulfils. Everything generated in your browser. Ready for CE marking, notified bodies and market surveillance authorities.

Dossier documents

8 PDFs · 32 pages
1
Product Classifier & Scope
Arts. 2, 7 + Annexes III/IV

Determines whether your product falls under the CRA, its category (Default, Class I, Class II or Critical) and the applicable conformity assessment procedure.

CRACheck · Document 1
Product Classifier & Scope
Art. 2 + Art. 7 + Annexes III and IV
ProductNovaBridge SmartHub v3.1
ManufacturerNovaBridge Technologies Inc.
In scope?YES
CategoryDefault (Art. 7)
AssessmentInternal (Annex VIII)
CRA · IN SCOPE · DEFAULT
CRACHK-KBRJZQ · Page 1 of 3
2
Technical Documentation Annex VII
Art. 31 + Annex VII

The core document. Covers the 8 points of Annex VII: general description, design and development, cybersecurity risk assessment, support period, standards applied and test reports.

CRACheck · Document 2
Technical Documentation
Art. 31 + Annex VII
1. General product descriptionVII.1
2. Design & developmentVII.2
3. Cybersecurity risk assessmentVII.3
4. Support period & updatesVII.4
5. Standards appliedVII.5
6–8. Test reports, SBOM, changesVII.6-8
CRACHK-KBRJZQ · Page 1 of 5
3
Cybersecurity Risk Assessment
Art. 13(2)-(4) + Annex I

Maps the 13 product property requirements (Part I) and the 8 vulnerability handling requirements (Part II) of Annex I against your specific product.

CRACheck · Document 3
Cybersecurity Risk Assessment
Art. 13(2)-(4) + Annex I
Part I: 13 product propertiesAnnex I.I
Part II: 8 vulnerability handlingAnnex I.II
Risk identification & analysis
Mitigation measures
Residual risk assessment
CRACHK-KBRJZQ · Page 1 of 6
4
User Information & Instructions
Annex II

The 9 mandatory information points that must accompany the product per Annex II: single point of contact, CVD policy, support period, secure commissioning and decommissioning.

CRACheck · Document 4
User Information & Instructions
Annex II — 9 mandatory points
Manufacturer identificationII.1
Single point of contactII.2
Support period & updatesII.3
Secure commissioningII.6
Secure decommissioningII.9
CRACHK-KBRJZQ · Page 1 of 4
5
EU Declaration of Conformity
Art. 28 + Annex V

Signable document per Art. 28 and Annex V. The manufacturer declares that the product meets the essential requirements of Annex I. The basis for CE marking (Art. 30).

CRACheck · Document 5
EU Declaration of Conformity
Per Art. 28 and Annex V
ProductNovaBridge SmartHub v3.1
ManufacturerNovaBridge Technologies Inc.
AssessmentInternal (Annex VIII)
"The manufacturer declares that the product meets the essential requirements of Annex I."
SignatureSarah Chen, VP Compliance
Date07/05/2026
CRACHK-KBRJZQ · Page 1 of 3
6
Coordinated Vulnerability Disclosure Policy
Annex I, Part II, point 5 + Art. 13.8

Structured CVD policy: intake, triage, remediation, disclosure and record-keeping. Mandatory for every manufacturer of products with digital elements.

CRACheck · Document 6
CVD Policy
Annex I, Part II, point 5 + Art. 13.8
SECTION 1
Scope & contact point
SECTION 2
Intake & acknowledgement
SECTION 3
Triage & assessment
SECTION 4
Remediation & disclosure
SECTION 5
Record-keeping
CRACHK-KBRJZQ · Page 1 of 3
7
Art. 14 Notification Template
Art. 14 · 24h / 72h / 14 days · Mandatory from Sep 2026

The 3 mandatory notification phases: early warning (24h), notification (72h) and final report (14 days). For actively exploited vulnerabilities and severe incidents.

CRACheck · Document 7
Notification Template — Art. 14
Actively exploited vulnerabilities & severe incidents
24 hoursEarly warning to CSIRT
72 hoursNotification to CSIRT + ENISA
14 daysFinal report
MANDATORY FROM SEP 2026
CRACHK-KBRJZQ · Page 1 of 6
8
Obligations Calendar + Penalties
Arts. 64, 69-71

All CRA key dates in chronological order: conformity body notification (Jun 2026), reporting obligations (Sep 2026), full application (Dec 2027). With the Art. 64 penalty framework.

CRACheck · Document 8
Obligations Calendar
Arts. 69-71 + customised dates
Jun 2026Conformity bodies notified
Sep 2026Reporting obligations (Art. 14)
Dec 2027Full application
Annex IUp to €15M / 2.5%
OtherUp to €10M / 2%
CRACHK-KBRJZQ · Page 1 of 2

See the output before you buy — Download sample dossier (PDF, fictional company) — Real structure, real articles, real format. Fictional data.

Choose your licence

One-time payment. No subscription. The downloaded dossier is yours forever.

1 product
€149 / product

1 licence = 1 product with digital elements

  • 8 PDF documents in ZIP (~32 pages)
  • Full Annex VII technical documentation
  • Annex I cybersecurity risk assessment
  • EU Declaration of Conformity (Art. 28)
  • CVD Policy + Art. 14 notification template
  • 10 regenerations · 30 days
Buy licence →
Professional Pack
€1,199 / 70 products

One key, 70 complete generations

  • 70 complete dossiers (8 docs each)
  • Switch products between generations
  • €17.13/product vs €149 individual
  • For companies with product catalogues
  • For consultants billing CRA compliance
Buy Pack →
Generate your CRA documentation — €149

One-time payment · No subscription · 30 minutes · The dossier is yours forever

No setup

Open the generator, fill the form, download your dossier. No onboarding, no registration, no waiting.

🚫
No subscription

Pay once per product. No monthly fees, no annual contracts, no vendor lock-in.

🔒
Your data stays in your browser

100% browser-side processing. Your product data never leaves your device.