The European Commission has strengthened the cybersecurity of internet-connected radio products in the European Union (EU) by adopting a Delegated Act under the Radio Equipment Directive (RED). The Delegated Act will enter into force on 1 August 2025.
The new essential compliance requirements are:
• 3(3)(d): Ensure network protection: radio equipment must not harm the network or its functioning nor misuse network resources.
• 3(3)(e): Radio equipment must incorporate safeguards to ensure that the personal data and privacy of the user and the subscriber are protected.
• 3(3)(f): Radio equipment must support certain features to ensure protection from fraud.
These will be within the recently released EN 18031-1, -2, and -3 standards series. The applicability clause ensures only realistic requirements are enforced. Our experts can help you identify the relevant applicable clauses.
BSI provides third-party testing services against EN 18031 standards, including issuance of a compliance test report. This follows BSI broad expertise in testing services against EN 303 645/TS 103 701 and many different connected devices product testing activities for years.
