The new cybersecurity requirements of the European Union Radio Equipment Directive (RED 2014/53/EU) will become mandatory on 1 August 2025. Cybersecurity has become a global concern, and this presents new challenges for manufacturers in demonstrating compliance.
The RED covers all radio equipment placed on the EU market. In addition to electrical safety, EMC and radio frequency requirements, Delegated Regulation (EU) 2022/30 was published in January 2022, which strengthened cybersecurity requirements for radio equipment. These requirements apply to Articles 3.3 (d), (e) and (f) of the RED Directive and aim to:
- ensure the security and functionality of the network
- protect personal data and user privacy
- prevent fraud and abuse
The requirements apply to, for example, home alarm systems, wearable health and wellbeing devices (e.g. heart rate monitors, sports watches), baby monitors and smart entertainment systems.
What will change?
From 1 August 2025, cybersecurity features will no longer be optional – they will be mandatory for all radio equipment placed on the market that falls under the above-mentioned articles.
How to demonstrate compliance?
On 30 January 2025, the European Commission published three harmonized standards by Implementing Decision 2025/138:
- EN 18031-1:2024 – Internet-connected radio equipment
- EN 18031-2:2024 – Radio equipment processing personal data, traffic data or location data. In particular, Internet-connected radio equipment, childcare equipment, toys and wearable radio equipment.
- EN 18031-3:2024 – Internet-connected radio equipment enabling the transfer of money, monetary value or virtual currency.
By following these standards, the manufacturer can demonstrate compliance. However, the standards were published with certain restrictions. If the restrictions apply to the manufacturer's product, the conformity assessment requires the participation of a notified body in the assessment process.
The European Commission has published guidance on the application of harmonized standards, which can be downloaded from the Commission's website.
About SGS
SGS is the world’s leading Testing, Inspection and Certification company. We operate a network of over 2,500 laboratories and business facilities across 115 countries, supported by a team of 99,500 dedicated professionals. With over 145 years of service excellence, we combine the precision and accuracy that define Swiss companies to help organizations achieve the highest standards of quality, compliance and sustainability.
Our brand promise – when you need to be sure – underscores our commitment to trust, integrity and reliability, enabling businesses to thrive with confidence. We proudly deliver our expert services through the SGS name and trusted specialized brands, including Brightsight, Bluesign, Maine Pointe and Nutrasource.
SGS is publicly traded on the SIX Swiss Exchange under the ticker symbol SGSN (ISIN CH1256740924, Reuters SGSN.S, Bloomberg SGSN:SW).
