Our Products

The compliance operating system - manage execution, documentation, and certification entirely online.

Compliance efforts vary by industry, product type, and business model. If you need guidance navigating the landscape, we work with independent consultants who specialise in EU product regulations.

Once you have your compliance strategy defined, our platform helps you manage the execution. Submit documentation, track regulatory changes, and certify your products entirely online. If you are unsure where to begin, our video library provides step-by-step guidance.

ComplianceOS in action — a walkthrough of the documentation, tracking, and certification workflow

Key dates

Regulatory timeline

Understanding when obligations take effect is critical for product planning.

10 December 2024

CRA entry into force

The Cyber Resilience Act officially entered into force. A 36-month transition period began for manufacturers to adapt to the new requirements.

11 June 2026

CAB notifications begin

Member States must begin notifying the European Commission of Conformity Assessment Bodies authorised to conduct third-party assessments under the CRA. This establishes the auditing infrastructure.

11 September 2026

Reporting obligations active

Manufacturers must begin reporting actively exploited vulnerabilities and severe incidents to ENISA and national CSIRTs within 24 hours of discovery. This is a critical milestone requiring operational readiness.

9 December 2026

PLD transposition deadline

Member States must transpose the new Product Liability Directive into national law. Strict liability for defective software, including data loss caused by security vulnerabilities, becomes enforceable for products placed on the market from this date.

11 December 2027

CRA full application

The transition period ends. All products with digital elements placed on the EU market must fully comply with Annex I cybersecurity requirements, possess complete technical documentation, and bear the CE marking.

Platform

The compliance operating system

Stop managing compliance in spreadsheets. MVC provides the centralised platform manufacturers need to manage technical documentation and declarations of conformity.

Smart documentation

Upload your technical files and let our system categorise them against CRA, PLD, and AI Act requirements. Maintain a complete audit trail. Never lose assessment evidence again.

Our document management integrates vulnerability disclosure records, software bill of materials, risk assessments, and conformity documentation in one place.

Digital product passport

The EU Digital Product Passport requirement is coming. MVC auto-generates QR codes linking to your product's compliance information, meeting the new traceability requirements before they become mandatory.

Each passport links to your technical documentation, update history, and support contact information.

API integration

Connect MVC directly to your ERP, PLM, or CI/CD systems. Compliance data updates automatically as your product evolves. No manual synchronisation required.

Our API supports webhooks for regulatory deadline alerts and document expiration notifications.

Classification

Product categories

The CRA distinguishes between default products, important products (Class I and Class II), and critical products. Each category carries different conformity assessment requirements.

Default products

Self-assessment is permitted. MVC guides you through the process and generates the required documentation.

Important products (Class I)

Harmonised standards or third-party assessment required. Our platform tracks relevant standards and connects you with notified bodies when needed.

Important products (Class II)

Mandatory third-party assessment. MVC prepares your documentation package and facilitates CAB engagement.

Critical products

Certification by an accredited CAB required. Our CAB subsidiary handles the full assessment process.

Learn about our CAB