All news

European Union

EU RED Cybersecurity Requirements Set to Take Effect in August 2025

European Union Flag

04-AUG-25

New Cybersecurity Rules for Wireless Devices in the EU
The European Commission is introducing updated cybersecurity requirements under the Radio Equipment Directive (RED), which will take effect in August 2025. These new rules aim to improve the safety and resilience of wireless and connected devices sold within the European Economic Area (EEA).

Scope of the Regulation
The enhanced RED provisions will apply to radio equipment capable of communicating over the internet—such as smartphones, smartwatches, and other IoT devices. Manufacturers must ensure that their products include safeguards to: 
  • - Protect users’ personal data and privacy
  • - Prevent network disruptions caused by the equipment
  • - Reduce the risk of fraud and cyber threats

Implementation Timeline
Although originally slated to come into force in 2024, the European Commission extended the implementation deadline to August 1, 2025, giving manufacturers more time to adapt their products and processes.

Next Steps for Manufacturers
To meet RED cybersecurity requirements, manufacturers will need to: 
  • - Conduct a conformity assessment
  • - Update technical documentation and declarations of conformity
  • - Possibly revise design and firmware of affected products

Companies are advised to act early to ensure full compliance ahead of the 2025 deadline. 

Eleos Compliance offer international RF, EMC, Safety and Green type approval services for radiocommunications products.

Eleos Compliance are a sustainable, values-based business combining extensive experience in the wireless homologation sector with outstanding project management.

For full support with your global market access requirements or regulatory intelligence needs please contact us at enquiries@eleoscompliance.com

Industry Updates

Latest News

Stay ahead of the rapid changes unfolding in RF and EMC regulation worldwide.

Browse all news
Abstract background for news article
Australia
Australia flag

Forthcoming Mandatory Cyber Security Standards

With the 4 March 2026 enforcement date approaching, businesses must align with Australia’s mandatory cyber security standards for consumer connectable products. The Cyber Security Act 2024 introduces strict statutory requirements for manufacturers regarding credential security, vulnerability management, and support transparency.

11-FEB-26 Read more
Abstract background for news article
India
India flag

India DoT Issues Lower 6 GHz Rules for LPI/VLP WAS & RLAN

India’s DoT has introduced 2026 rules allowing licence-exempt low-power wireless use in the 5925–6425 MHz (lower 6 GHz) band under specified power limits.

10-FEB-26 Read more
Abstract background for news article
India
India flag

India TEC Adds New Variants Under Essential Requirements for IP Security Equipment

India TEC has released an updated Essential Requirements (ER) document for IP Security Equipment effective 01 February 2026, adding four new product variants to the compliance scope: Data Loss Prevention, Network Data Encryption, Secure Telemetry, and Secure Web Gateway equipment. Mandatory compliance timelines are expected to be announced soon.

09-FEB-26 Read more