Does the CRA apply to startups?

Yes. The CRA applies to all manufacturers, importers, and distributors of products with digital elements on the EU market — regardless of company size. The same deadlines and requirements apply to a startup with 5 employees as to a corporation with 5,000.

What does Kunnus cost for startups?

Kunnus offers qualifying startups access to the full platform at significantly reduced rates. We work individually with each startup to find a licensing model that fits their current situation.

What are the eligibility requirements for the startup program?

The program is designed for companies with fewer than 50 employees building connected products, IoT devices, or software with digital elements that are active or planning to enter the EU market.

Startup Program

From Zero to CRA-Ready

You’re building the future of connected products. We make sure the EU Cyber Resilience Act doesn’t slow you down.

Does your product have a digital element that connects to a device or network? If yes — the CRA applies to you.

Startups building products with digital elements face the same CRA obligations as large enterprises – but with a fraction of the budget. Kunnus levels the playing field with a dedicated startup program designed to make compliance accessible from day one.

Get started today — EU-hosted and audit-ready

The CRA Doesn’t Care About Your Runway

Same deadlines, smaller team

September 2026 for reporting obligations. December 2027 for full compliance. The timeline is the same whether you have 5 employees or 5,000.

Full regulatory scope

If your product has digital elements and enters the EU market, you need SBOM management, vulnerability handling, and conformity documentation – no exceptions for company size.

Enterprise tools, startup budget

Most compliance platforms are built for enterprise. Their pricing reflects that. You need a solution that scales with you, not against you.

CRA Relief Measures for Startups

As a micro or small enterprise, you benefit from targeted CRA exemptions: fine exemption for late early warnings, simplified technical documentation, dedicated helpdesks, and priority access to regulatory sandboxes. The core cybersecurity requirements remain the same — but the path to compliance is made easier.

All 8 relief measures in detail

Our Startup Program

Kunnus doesn’t just help you comply — it makes compliance part of your product lifecycle. We offer qualifying startups access to the full Kunnus platform at significantly reduced rates – so you can focus on building great products while staying CRA-ready.

—Full platform access, cloud-deployed.

No feature limitations, no stripped-down version. You get the same powerful tools that enterprises use – SBOM management, automated vulnerability monitoring, conformity documentation, and regulatory tracking. Fully cloud-hosted in the EU, so there’s nothing to install and you’re up and running in minutes.

—Pricing that respects your stage.

We work with startups individually to find a licensing model that fits your current situation. Our goal is to remove cost as a blocker – not to sell you something you can’t afford.

—A compliance partner, not just a tool.

Our team understands the specific challenges startups face with CRA compliance. We help you set up efficiently and avoid costly mistakes early on.

The startup program is available to companies that meet specific eligibility criteria. Contact our team to learn more about qualification and terms.

Is Your Startup Eligible?

Our program is designed for early-stage companies building products that fall under the EU Cyber Resilience Act. Typical participants include:

Companies with fewer than 50 employees
Building connected products, IoT devices, or software with digital elements
Planning to enter or already active in the EU market
Funded or revenue-generating, but at an early growth stage

Not sure if you qualify? Reach out – we’d rather have a quick conversation than have you miss out.

Getting Started Is Simple

Get in touch

Platform demo, Q&A, no commitment. Tell us about your product and we’ll show you exactly how Kunnus can help.

Assess

Product scope analysis, CRA gap assessment, and risk classification — so you know exactly where you stand.

Onboard

Platform setup, team training (~2 hours), and initial SBOM import. You’ll be operational by end of day.

Comply

Continuous monitoring, ENISA reporting ready, and complete audit documentation — from zero to CRA-ready.

Ready to Make Compliance Your Competitive Advantage?

The CRA deadline is approaching. The earlier you start, the smoother the path. Let’s talk about how Kunnus can support your startup.

No commitment. Just a conversation about your compliance needs.