Since 2014 the Radio Equipment Directive 2014/53/EU, abbreviated RED, regulates the making available of radio equipment on the market. A recently published legal act now specifies contents of the Directive with regard to the topics (Cyber)-security and data protection.
This overview intends to explain the motivation of the European Commission as well as some content-related aspects of the legal act.
On a global scale the 5G-technology is on the rise and is most likely going to affect the daily routine within the European Union. Despite all advantages of the technology the dispersion of the standard also endangers cybersecurity. Especially machines being able to communicate via internet connection are in the scope of the Radio Equipment Directive and therefore exposed to such a threat.
So far, the essential requirements of the Directive have not referred to such equipment connected to the internet. Due to the internet-readiness, this kind of asset is exposed to a certain fraud risk, which is to be reduced via a corresponding adjustment of the requirements. Due to those reasons the EU-Commission saw an urge to “re-sharpen” article 3 of the RED.
The Commission published the Regulation in the EU Official Journal “supplementing Directive 2014/53/EU (…) with regard to the application of the essential requirements referred to in Article 3(3), points (d), (e) and (f), of that Directive.”1
The Radio Equipment Directive may grant the Commission the authority to state via delegated legal acts which “categories or classes of radio equipment” are covered in the range of article 3.
A legal act of that kind is Regulation 2022/30: it determines that “internet-connected radio equipment” is also covered by the requirements.
In a broader sense, e.g., internet-connected machinery may not exert any “harm to the network or its functioning or misuse of network resources”, “support features for ensuring protection from fraud” and guarantee the protection of person-related data.
According to the Commission’s information the Regulation will be effective from the 20th day of publication in the Official Journal of the EU (02/01/2022), from August 1st all products concerned will need to fulfil the new requirements.
With respect to standardization, CENELEC have announced that they have already initiated a preparation of appropriate harmonized standards.
Interested readers can read the full text of the legal act on the portal EUR-LEX. The link can be found here.
Footnote:1The full text of the Radio Equipment Directive can be found on the Commission's webpage EUR-LEX.
Posted on: 01/24/2022
Daniel Zacek-Gebele, MSc Since 2020 Community Manager at IBF for the Standards Experts Community (SECOM), collaborator in the project "Digital Standardization" and Product Manager for data products on the Safexpert Live Server. Studies of Business Administration and Economics in Passau and Stuttgart (Hohenheim) with focus on International Management. Email: daniel.zacek-gebele@ibf-solutions.com | www.ibf-solutions.com
Back to overview
General InformationRisk assessmentOur Products
CE software for systematic and professional safety engineering
Practical seminars on aspects of risk assessment and ce-marking
With the CE InfoService you stay informed about important developments in the field of product safety.