New cybersecurity obligations under Radio Equipment Directive (RED)

New cybersecurity obligations under Radio Equipment Directive (RED)

On October 29, 2021, the European Commission adopted a delegated act to the Radio Equipment Directive aiming at scaling up the cybersecurity of wireless devices and products for the benefit of consumers. The act establishes obligations for manufacturers, importers, and distributors to include new traceability features to ensure a higher level of cybersecurity of such devices before entering the European market. The Commission delegated Regulation is part of the market surveillance framework.

The Radio Equipment directive 2014/53/EU (RED) is applicable as of 13 June 2016. It included a one-year transitional period, which ended on 12 June 2017

The delegated act issued under the RED will enter into force after a two-month scrutiny period, upon the Council and Parliament’s approval. Following the entry into force, manufacturers will have a transition period of 30 months to start complying with the new legal requirements

More specifically, the new delegated act will cover wireless devices and products such as:

  • Mobile phones, tablets and laptops employing internet for communicative purposes;
  • Toys and childcare equipment such as baby monitors;
  • Wearable equipment such as smartwatches or fitness trackers.

The new legal obligations aim at achieving the following objectives:

  • Improve network resilience: Wireless devices and products will encompass technical features to prevent the possibility that the devices are used to disrupt website functionality;
  • Better protect consumers' privacy: Manufacturers will have to implement new measures to prevent unauthorized access or transmission of personal data;
  • Reduce the risk of monetary fraud: Wireless devices and products will need to ensure better authentication control of the user to avoid fraudulent payments (European Commission, 2021).

Obelis’ mission is to make the European Union a safer market through compliance. This vision is in line with the European Commission’s new legal requirements in the field of cybersecurity. This subject has become increasingly sensitive in today’s ever more interconnected world. In this scenario, the delegated act will entrench the European citizens’ confidence in the security of their wireless products employed for both business and private communication.

Should you desire to stay up to date with the European Commission’s initiatives concerning the RED, Obelis is glad to share with you the latest news on EU regulatory compliance through its website News Section.

Or, should you be interested in placing wireless devices and products in the European market, Obelis, with over 30 years of experience, will be your European Authorized Representative of choice, assisting you through your journey into EU regulatory compliance.

Get in touch

Sofia Belmare Ingrande

Regulatory Affairs Department

22 / 11 / 2021