In its contribution, CoESS stresses the need for more effective and harmonised enforcement of EU rules at national level, pointing to fragmented reporting mechanisms for cyber and data breach incidents and inconsistencies in regulatory interpretation in some EU Member States.

Among others, CoESS calls for a streamlined approach to reporting under the EU Cyber Resilience Act (CRA), recommending a single, EU-level reporting platform managed by ENISA and alignment of reporting timelines across the digital acquis. CoESS also urges the European Commission to evaluate the national implementation of GDPR provisions relevant to public security and data protection to reduce administrative burdens and enhance legal certainty for companies operating in Europes essential security services industry.