EMC China Lab

CE Certification Directive for Radio Equipment: RED Network Security

Views :
Update time : 2024-09-27

In January 2022, the Official Journal of the European Union published Regulation 2022/30/EU, requiring compliance with the Radio Equipment Directive (RED) Articles 3.3(d), (e), and (f). This regulation will be mandatory starting August 1, 2025, providing a transition period for manufacturers to comply with the relevant requirements and obtain CE-RED certification.

 

The regulation mandates that applicable radio equipment in the EU market ensure network security, personal data privacy, and fraud protection, aiming to enhance the network security of such devices and boost consumer confidence. Non-compliance may result in product recalls, fines, market bans, and reputational damage. With less than a year until the enforcement date, JJR Laboratory in China advises manufacturers to begin preparations to ensure compliance by the deadline.

 

What is RED Article 3.3 Certification?

According to the EU's Radio Equipment Directive (RED), particularly Article 3.3, basic requirements are set for network security to improve the cybersecurity of wireless products, personal data protection, privacy, and the security of financial transactions.

 

- Regulatory Requirements:

- RED Article 3.3(d): Must not compromise the network or its functions, nor misuse network resources to cause unacceptable service degradation.

- RED Article 3.3(e): Must include safeguards to ensure protection of users' and subscribers' personal data and privacy.

- RED Article 3.3(f): Must support certain features to prevent fraud.

 

- Device Coverage:

- Devices that can communicate over the Internet on their own and devices connected to the Internet.

- Must process personal data, communication traffic data, and location data via the Internet.

- Devices that can communicate over the Internet via connected devices and enable holders or users to transfer money, currency, or virtual currency.

 

- Exclusions:

- RED Articles 3.3(d), (e), and (f) do not apply to medical devices and in-vitro diagnostic medical devices.

- RED Articles 3.3(e) and (f) do not apply to type-approved vehicles and vehicle systems, civil aviation equipment, and cross-border electronic toll systems.

 

If applicable products do not meet requirements, manufacturers may face consequences including but not limited to:

- Product Recall: Products found non-compliant with cybersecurity requirements may need to be recalled from the market.

- Fines: Manufacturers may incur substantial fines depending on the severity and scope of the non-compliance.

- Market Ban: In severe cases, non-compliant products may be prohibited from sale in the EU market.

- Reputational Damage: Brand reputation may suffer due to violations of cybersecurity regulations, affecting consumer trust and sales.

 

How to Ensure Radio Equipment Meets RED Article 3.3 Requirements

To ensure radio equipment complies with RED Article 3.3, the following steps should be taken:

1. Understand the Requirements of Article 3.3: These include cybersecurity, personal data protection, user privacy protection, and fraud prevention measures. Specifically, Article 3.3(d) prohibits compromising network functionality and misusing resources; Article 3.3(e) requires measures to protect personal data and privacy; Article 3.3(f) mandates support for fraud prevention features.

 

2. Learn en 18031 Series Standards: During planning and manufacturing, ensure that radio equipment integrates essential security features, such as preventing unauthorized access, implementing data protection, and securing firmware updates. Mastering the en 18031 standards, although not currently a coordinated standard for RED, provides valuable reference for meeting RED's security requirements.

 

3. Monitor Regulatory Changes: The RED regulations may be updated, so regularly check for the latest regulatory requirements to ensure devices remain compliant with current standards.

 

4. Check Device Applicability under RED Article 3.3: This includes devices capable of Internet communication, whether directly or indirectly connected, such as wearable technology, portable devices, and those for transferring funds or virtual currency, as well as children’s toys or monitoring devices.


Email:hello@jjrlab.com


Leave Your Message


Write your message here and send it to us


Related News
Read More >>
Amazon Toys TIC DV Validation Amazon Toys TIC DV Validation
07 .06.2026
Need Amazon Toys TIC DV Validation? JJR LAB offers direct reporting, ensuring laser, jewelry & s...
Austrian Amazon EPR Mandatory Compliance Austrian Amazon EPR Mandatory Compliance
07 .06.2026
Austrian Amazon EPR is mandatory for packaging, WEEE & batteries. Ensure products meet testing s...
The Differences Between CTA Network Access Certifi The Differences Between CTA Network Access Certifi
07 .06.2026
CTA regulates network access, while SRRC governs RF emissions in China. Complying with MIIT testing ...
Where to Get German LFGB Testing Done? Where to Get German LFGB Testing Done?
07 .05.2026
Need German LFGB testing? JJR LAB verifies food contact materials to strict LFGB Sec 30 & 31 sta...
966 Fully Anechoic Chamber 966 Fully Anechoic Chamber
07 .04.2026
At JJR LAB, our 966 Fully Anechoic Chamber provides expert EMC testing to EN55032 and IEC 61000 stan...
Power Adapter UL1310 Certification Power Adapter UL1310 Certification
07 .03.2026
JJR LAB provides professional UL1310 testing standard certification for Class 2 power adapters and c...
Standard for Air Conditioners and Dehumidifiers: I Standard for Air Conditioners and Dehumidifiers: I
07 .03.2026
JJR LAB provides expert testing for the new IEC 60335-2-40:2024 standard. Ed 8 updates safety rules ...
Guide to Children's Product Safety and Compliance Guide to Children's Product Safety and Compliance
07 .01.2026
Ensure children‘s product safety and compliance for toys and apparel by meeting strict testing stand...

Leave Your Message