UL Solutions RED Cybersecurity Services

The European Commission’s (EC’s) Radio Equipment Directive (RED) 2014/53/EU establishes a regulatory framework for radio equipment, setting essential requirements for safety and health, electromagnetic compatibility (EMC) and radio spectrum efficiency.   

The directive includes Article 3.3 as a placeholder to address device requirements related to radio-specific issues, ranging from common interfaces to cybersecurity.   

On Jan. 12, 2022, the Official Journal of the European Union published delegated regulation 2022/30/EU, enforcing compliance requirements to RED Article 3.3(d), (e) and (f). The regulation increases cybersecurity, personal data privacy and fraud protection for applicable wireless devices available in the EU market. It took effect Feb. 1, 2022, and will become mandatory Aug. 1, 2025, giving device manufacturers a 42-month transition period. The RED Delegated Act (RED DA) will impact any manufacturer producing radio equipment to be sold in the EU market.   

UL Solutions offers Internet of Things (IoT) advisory services, workshops and training designed to support our customers on every step of your journey toward RED compliance, from initial strategy and development through formal compliance and product launch. 

UL Solutions RED cybersecurity services

We can support your journey toward RED DA compliance by highlighting gaps and providing you with education and guidance to reach your objectives. We can work together to increase your cybersecurity resiliency in alignment with the cybersecurity regulation landscape.

RED DA and EU regulatory landscape workshop

This workshop provides an overview of the EU cybersecurity regulatory landscape, setting the stage for a deeper understanding of the RED DA for Article 3.3(d), (e) and (f) and its importance in enhancing the security and privacy of connected devices along with the future impacts of the Cyber Security Resilience Act.

Advisory services

We offer training services for customers at every step of their journey toward RED compliance.

Basic – Level 1: Initiation

Basic advisory services are designed for manufacturers starting their journey into the RED DA and looking for an expert to help identify the major gaps toward future compliance.

Substantial – Level 2: Developing

Substantial advisory services are designed for manufacturers that have already started working on their compliance with RED DA and have prior experience with cybersecurity certifications.

High – Level 3: Defined

These services are designed for manufacturers that are well on track on their journey to compliance with RED DA and looking for an expert to evaluate their work.

Read our info sheet to explore our services.