“Cyber-attacks can be more dangerous to the stability of democracies and economies than guns and tanks”, the EU Commission President Jean-Claude Juncker stated in 2017. Today, the adoption of the Cybersecurity Act is a key step towards further strenghtening the European Union’s posture in cyberspace. The implications of this Act go beyond the mere technical dimension: they directly impact the private sector, the establishment of a single digital market, and the projection of EU as a digital power vis à vis other international actors. What is political meaning of the Act? What role does the private sector hold in this framework? And, how does the EU cyber strategy differ from the strategies put in place by other actors?