CyAN supports the open letter to the incoming German government advocating for legal clarity in protecting good faith cybersecurity vulnerability researchers.
responsible disclosure
Coordinated Vulnerability Disclosure – Europe Has Some Work to Do

Coordinated cybersecurity vulnerability disclosure (CVD) policies in Europe are unfortunately not universal; likewise, legislation to protect ethical hackers still has a way to go. The European Cybersecurity Agency (ENISA) could do more at an EU-wide level to help good faith researchers protect critical digital resources.