In 2019, the European Cybersecurity Act was enacted to strengthen ENISA and establish a cybersecurity certification framework for products and services. Considering the experience with the preparation of the first schemes, BDI proposes concrete measures directed at enhancing the transparency and stakeholder involvement in the process of preparing these and future schemes. Moreover, we see the need to limit the schemes’ scope to purely technical aspects.