The EU Machine Regulation 2023/1230: What will change for MRO in 2027?

1. Introduction

The new EU Machine Regulation (Regulation (EU) 2023/1230) will come into full effect on January 20, 2027. This legislation replaces the current Machinery Directive 2006/42/EC. For maintenance managers and plant engineers in the Benelux manufacturing industry, this transition requires immediate action. The regulations shift from a directive (which requires national implementation) to a regulation. This means that the legislation is directly and uniformly binding in all EU member states. Differences in interpretation between the Dutch Labor Inspectorate and the Belgian FPS Employment are now a thing of the past.

The industrial sector is digitizing. Machines are connected to networks and use complex software controls. The new regulation directly addresses these technological shifts. The emphasis is on cybersecurity, the integration of artificial intelligence into safety systems and stricter rules surrounding the modification of existing production lines. For MRO (Maintenance, Repair, and Operations) departments, this means a fundamental change in how maintenance, retrofits, and spare parts procurement are managed.

2. Scope & Scope

The regulation applies to manufacturers, importers and distributors of machinery. However, within a production environment, the end user is often legally seen as a 'manufacturer'. This comes into effect when an existing machine undergoes a 'substantial change'. A substantial change is a physical or digital modification that introduces new hazards or increases existing risks, rendering the original CE marking invalid.

The regulations apply to:

• Industrial production lines and assembly cells.
• Collaborative robots (cobots) and Automated Guided Vehicles (AGVs).
• Loose safety components, including light curtains, safety PLCs and emergency stop relays.
• Software that performs a specific security function, even when distributed independently of physical hardware.

3. Key Requirements and Deadlines

The transition period ends in early 2027. The table below summarizes the primary technical and administrative obligations.

4. Impact on MRO operations

Purchasing and Supply Chain

The purchasing department must tighten supplier audits. Spare parts that affect the safety functions of a machine must comply with the new traceability requirements. Installing 'grey imports' or non-certified alternatives significantly increases the liability risk. Components must have a unique identification (such as a batch or serial number) and a Declaration of Conformity (DoC) that refers to the new regulation.

Maintenance and Modifications

Regular preventive maintenance – such as replacing worn bearings with identical ones (with an MTBF of 50,000 hours and H7/j6 tolerances) – is not considered a substantial change. However, replacing an outdated frequency converter with a model with a higher switching frequency and integrated Safe Torque Off (STO) functionality can change the behavior of the drivetrain. This requires an update of the technical file and a verification of the braking times.

Software and Firmware Updates

A firmware update of a safety PLC (such as systems that comply with SIL 3 according to IEC 62061) is considered a possible change to the machine under the new legislation. Maintenance teams must implement strict version control procedures. Every update of safety-critical software requires a functional test and a documentation record in the machine logbook.

5. Component Requirements and Certifications

Specific machine parts must meet strict standards to enable integration into CE-marked machines.

Hydraulics and Pneumatics

Pressure equipment integrated into machines is also covered by the Pressure Equipment Directive (PED 2014/68/EU). For hydraulic units that operate under continuous pressures of 350 bar and peak pressures of up to 420 bar, at oil temperatures up to 80°C, the legislator requires certified seals and material certificates (type 3.1 according to EN 10204). Hose rupture protection devices must be mechanically secured and tested periodically.

Drive technology and engines

Electric motors (IE3 and IE4 classifications) placed in potentially explosive atmospheres must comply with the ATEX directive 2014/34/EU (Zones 1, 2, 21 and 22). When retrofitting drives, the new machinery regulation requires that the combination of motor, gearbox and frequency converter as one electromechanical system be validated for thermal overload and short-circuit resistance.

Sensors and Machine Safety

Position sensors, encoders and safety relays must comply with NEN-EN-ISO 13849-1:2023. The required Performance Level (PLr) must correspond to the initial risk assessment of the machine. Replacing a PL 'e' component with a PL 'd' component is a direct violation of safety regulations and makes the machine unsuitable for use.

6. Compliance Checklist for Plant Engineers (2027 Readiness)

Use this technical checklist to prepare your production facility for Regulation (EU) 2023/1230.

A. Documentation & Administration

1. Make an inventory of all machines present and their current CE markings (Directive 2006/42/EC).
2. Check whether the original EC declarations of conformity are available physically or digitally.
3. Verify that the technical file (TCF) of internally built machines is complete.
4. Implement a digital management system for machine manuals on the shop floor.
5. Establish a procedure for documenting 'substantial changes'.

B. Hardware & Components

6. Analyze the purchasing list for critical safety components.
7. Require suppliers to submit a declaration of conformity in accordance with the new regulation for deliveries after January 2027.
8. Check hydraulic and pneumatic systems for the presence of EN 10204 3.1 material certificates.
9. Inspect physical guards in accordance with NEN-EN-ISO 14120.
10. Validate whether replacement motors in ATEX zones have the correct temperature class (T1-T6).

C. Software & Cybersecurity

11. Perform a network risk assessment according to IEC 62443-3-2.
12. Isolate industrial control systems (ICS) from office networks (VLAN segmentation).
13. Restrict physical access to PLC cabinets and industrial switches.
14. Set up an approval protocol for safety relay firmware updates.
15. Create weekly, encrypted backups of machine parameters and logic.

D. Procedures & Training

16. Train maintenance personnel in the requirements of NEN-EN-ISO 12100:2010.
17. Define clear boundaries between 'regular maintenance' and 'modification'.
18. Establish a Lockout-Tagout (LOTO) procedure for each unique machine.
19. Calibrate test equipment annually according to ISO 9001 regulations.
20. Perform periodic stop-time measurements on presses and rolls.

7. Common Non-Compliance Issues

Specific technical shortcomings frequently come to light during inspections by accredited inspection bodies (Notified Bodies) or national labor inspectorates. A common problem is bridging safety switches (interlocks) to enable maintenance with the machine running. This is a direct violation of machine regulations.

Other common findings include the lack of a new risk assessment after connecting two separate CE-marked machines into one assembled production line (set of machines). The use of validated 3D printed spare parts for load-bearing or safety-critical applications also immediately leads to rejection. Components must meet the specified tensile strength and fatigue requirements of the original manufacturer.

8. Sanctions & Liability

Non-compliance with machine regulations has direct financial and legal consequences. In the Netherlands, the Dutch Labor Inspectorate (NLA) applies a fine policy based on occupational health and safety legislation. For medium-sized companies, fines for lack of CE marking or insufficient shielding range from €4,500 to €82,000 per violation. In the event of repeated violations or accidents resulting in serious bodily injury, these amounts will be increased and production shut down (preventive requirement) may be ordered.

In Belgium, the FPS Employment, Labor and Social Dialogue takes action, imposing sanctions in accordance with the Social Criminal Code. In addition to administrative fines, there is a significant liability risk. Insurance companies often refuse to pay out for business damage or personal injury if it is determined that the machine did not meet the applicable safety requirements. Plant managers and lead engineers bear personal liability for demonstrable gross negligence in the management of machine safety.

9. Summary

The transition to Regulation (EU) 2023/1230 requires careful preparation from technical services. Correctly documenting changes, implementing cybersecurity measures and only using certified components are necessary to keep production installations legally and safely operational after 2027.

For an overview of certified components that meet current and future safety standards, please consult the UNITEC-D E-Catalog.

10. References

• Regulation (EU) 2023/1230 of the European Parliament and of the Council on machinery.
• NEN-EN-ISO 12100:2010 - Safety of machinery - General design principles - Risk assessment and risk reduction.
• NEN-EN-ISO 13849-1:2023 - Safety of machines - Parts of control systems with a safety function.
• IEC 62443 - Industrial communications networks - Network and system security.
• Directive 2014/68/EU (PED) - Pressure equipment.