RED – Cybersecurity of Radio Equipment

As of August 1, 2025, new obligations will come into force for manufacturers of radio equipment under Commission Delegated Regulation (EU) 2022/30, supplementing Directive 2014/53/EU (RED). This regulation addresses the rapid expansion of the Internet of Things and the increasing need for cybersecurity in internet-connected devices.

Who Is Affected by the New Requirements?

The obligations apply to manufacturers and importers of radio equipment that:

• connects to the internet (e.g., Wi-Fi routers, smart appliances, IoT devices),

• processes personal data (e.g., fitness trackers, smartwatches, cameras),

• enables electronic payments (e.g., POS terminals, smartwatches with NFC).

These requirements apply not only to new devices but also to existing products that undergo significant changes affecting their cybersecurity.

What We Offer

EZÚ provides a comprehensive system of services for manufacturers who are required to demonstrate compliance with the RED cybersecurity provisions:

Pre-screening

Basic assessment of product readiness for certification – free of charge.

Pre-check

An informative and training service introducing clients to the cybersecurity and RED requirements in accordance with current European legislation (including EN 18031). It helps manufacturers better prepare documentation and understand the certification process.

Certification According to EN 18031

Verification of product compliance with the requirements of the harmonized standard EN 18031. The result is an official test report, and if the requirements are met, a certificate is issued.

Conformity Assessment – Module B (EU Type Examination)

Assessment of conformity for a specific product type based on a review of the technical documentation. Suitable for low-volume or custom-purpose products.

Conformity Assessment – Module H (Full Quality Assurance)

Evaluation of the manufacturer’s quality management system – ideal for manufacturers with a broad product portfolio or frequent product variants. Allows for the issuance of EU Declarations of Conformity without repeated certifications. The notified body conducts regular surveillance audits to verify that the quality system remains effective, properly implemented, and compliant with current legislative requirements.