20 January 2022

Delegated Regulation RED compliance cybersecurity IoT products published in OJEU

The Official Journal of the European Union (OJEU) has published the Delegated Regulation (2022/30/EU), making compliance to the RED (2014/53/EU) articles 3.3 (d), (e) and (f) mandatory for cybersecurity aspects of IoT products. The Delegated Regulation will come in effect on the 1st of February 2022. After a transition period, compliance will become mandatory from 1st of August 2024. This regulation shall be binding in its entirety and will become directly applicable in all EU member states.

What does this mean for you as a manufacturer?

It is now confirmed that compliance to certain cybersecurity requirements from the RED (2014/53/EU) will become mandatory from the 1st of August 2024. Until then there is a transition period in which you have the opportunity to make your products compliant to these specific articles. Effectively this means that from the 1st of August 2024 you are not allowed to sell your products on the European market if they do not comply to articles 3.3 (d), (e) and (f) of the RED. For more information on the impact, timeliness and solutions on basis of this regulation read our white paper.

How can Kiwa help?

Kiwa supports manufacturers who want to get their products ready for European market access. For market access in Europe, RED compliance of a product is essential. In addition to the already mandatory articles of the RED (3.1a, 3.1b and 3.2) we can also help with testing and certification according to articles 3.3 d, e and f resulting in a one stop solution for your product’s RED compliance.

More information

You can read all about the Delegated Regulation in the official EU website. For more information about Kiwa’s services in the field of RED certification, please feel free to contact us via cybersecurity.certification@kiwa.com or +31 (0)88 998 33 70.