Starting August 1, 2025, wireless devices entering the EU market will be required to adhere to the new cybersecurity specifications known as 3.3 d/e/f. This mandate, propelled by the latest amendments to the Radio Equipment Directive (RED), necessitates that device manufacturers incorporate these security measures from the initial design phase. Related standards are currently being prepared and are anticipated to be released in 2024.
Adherence to obligatory information security regulations becomes mandatory
The Radio Equipment Directive (RED) governs how radio equipment is designed, produced, and introduced to the European market. Initially, the compliance deadline for these security measures was set for August 1, 2024. However, to allow more time for the development and adoption of the required technical standards, the European Commission has postponed this deadline to August 1, 2025. Following this extended deadline, any new radio equipment introduced in the EU must comply with these standards to be eligible for CE marking. Without this certification, the products cannot be legally sold or used within the EU.
Importantly, radio equipment that was on the market before this deadline is permitted to remain in use without modifications until it reaches the end of its operational life. This ensures a smoother transition for products already in circulation.
Expert Support for RED Compliance
Starting in the fourth quarter of 2024, test labs offering cybersecurity assessments will experience high demand. Ensure you have a strategy to meet cybersecurity requirements on time. Our specialists are well-prepared to assist manufacturers in complying with the updated Radio Equipment Directive, focusing on cybersecurity standards such as ETSI EN 303 645 and ISA/IEC 62443-4-2. With our customized support, your products will meet RED requirements and thrive in the EU market, ensuring you’re prepared for the new directive’s impact and maintaining continuous market access.