SG 95/23
Originally scheduled for enforcement in August 2024, the Radio Equipment Directive (RED) has been postponed to 2025 due to ongoing preparation of harmonized standards. Consequently, all wireless devices and products sold in the European Union (EU) will be required to comply with the RED delegated act from August 1, 2025.
The European Commission (EC) has taken measures to strengthen the cybersecurity of wireless devices and products available in the EU by adopting a delegated act under the Radio Equipment Directive (RED). Originally scheduled for enforcement in August 2024, this regulation has been postponed to 2025 due to ongoing preparation of harmonized standards. Consequently, all wireless devices and products sold in the EU will be required to comply with the RED delegated act from August 1, 2025.
In anticipation of the release of harmonized standards, manufacturers can start their compliance preparations now with the support of SGS. They can certify their IoT products against globally recognized cybersecurity standards like ETSI EN 303 645 and IEC 62443-4-2. These standards include requirements that align with the cybersecurity provisions outlined in RED, effectively equipping manufacturers for the upcoming regulatory framework. By partnering with a SGS Notified Body manufacturers can undergo the evaluation process and receive the SGS Cybersecurity Mark as a stamp of approval. With the SGS Cybersecurity Mark, manufacturers can showcase their readiness and compliance with RED requirements before these become mandatory, demonstrating market differentiation and enhancing consumer confidence in their product's safety and reliability.
The RED delegated act introduces new legal requirements for developers of wireless devices and products at risk from cyber-attacks and privacy issues. These requirements apply to the following device categories:
In accordance with Article 3(3) of Directive 2014/53/EU (RED), the legislative requirements include essential elements to ensure protection against cybersecurity risks, which are as follows:
The manufacturers, when performing the conformity assessment procedures before placing their products on the European Union (EU) market, will have the choice between two possibilities:
Leveraging our extensive experience and expertise gained from cybersecurity evaluations of various products and solutions, we have developed a comprehensive, step-by-step approach to guide you through each stage of the assessment and certification process. Our scope encompasses the full range of training, pre-assessment and evaluation services, enabling you to fast-track your time to market.
Our holistic Total Solution Services for electrical & electronic products, delivered through our global network of accredited testing laboratories, ensure manufacturers and retailers have access to expert support at every stage of the product life cycle, from design, production and regulatory compliance to the import and export of goods. Contact us for more information or visit our website. In the end, it’s only trusted because it’s tested.
© SGS Société Générale de Surveillance SA. This publication or website is a property of SGS Société Générale de Surveillance SA. All contents including website designs, text, and graphics contained herein are owned by or licensed to SGS Société Générale de Surveillance SA. The information provided is for technical and general information purposes only and offers no legal advice. The information is no substitute for professional legal advice to ensure compliance with the applicable laws and regulations. All information is provided in good faith “as is”, and SGS Société Générale de Surveillance SA makes no representation or warranty of any kind, express or implied, and does not warrant that the information will be error-free or meet any particular criteria of performance or quality.
