The Radio Equipment Directive (RED) sets essential requirements for radio equipment placed on the EU market. Delegated Regulation (EU) 2022/30 made certain RED cybersecurity-related requirements applicable, notably those linked to network protection, personal data and privacy, and fraud protection, for specific categories and classes of radio equipment from 1 August 2025.
Since the Cyber Resilience Act, Regulation (EU) 2024/2847, introduces horizontal cybersecurity requirements for products with digital elements and covers the same elements addressed by the RED cybersecurity delegated regulation, the Commission considers that keeping both regimes for the same radio equipment would create duplication and legal uncertainty.
To ensure a clear single framework, the Commission’s delegated act would repeal Delegated Regulation (EU) 2022/30 with effect from 11 December 2027, the date the Cyber Resilience Act applies in full.
The repeal would not affect market surveillance and control under the RED for equipment placed on the market between 1 August 2025 and 10 December 2027 that was subject to those requirements.
The repeal would not affect market surveillance and control under the RED for equipment placed on the market between 1 August 2025 and 10 December 2027 that was subject to those requirements.
Eleos Compliance offer international RF, EMC, Safety and Green type approval services for radiocommunications products. Eleos Compliance are a sustainable, values-based business combining extensive experience in the wireless homologation sector with outstanding project management. For full support with your global market access requirements or regulatory intelligence needs please contact us at enquiries@eleoscompliance.com
