C-PRAV Logo

Strengthening Cybersecurity Compliance in the EU

What You Need to Know

With the rise of cyber threats and the increasing reliance on connected devices, the European Union (EU) has introduced stricter cybersecurity regulations to ensure the safety and integrity of radio and internet-connected products. The latest update, EU Decision 2025/138, outlines newly harmonized cybersecurity standards that manufacturers must meet to enter the European market.

New Cybersecurity Standards for 2025

The EU has introduced three key standards aimed at securing radio equipment, IoT devices, and systems handling digital transactions:

EN 18031-1:2024

Security requirements for internet-connected radio equipment

EN 18031-2:2024

Protection standards for radio devices processing data, including IoT, wearable tech, and smart toys

EN 18031-3:2024

Cybersecurity measures for connected devices handling virtual payments or financial transactions

These regulations are designed to prevent unauthorized access, improve data security, and ensure compliance with EU cybersecurity directives.

How This Affects Manufacturers

For companies producing wireless communication devices, smart products, and IoT systems, these standards introduce enhanced security obligations, including:

  • Stronger authentication and access control measures
  • Increased protection against unauthorized data access and cyber threats
  • Mandatory security measures for smart devices handling sensitive information

Compliance & Certification Considerations

While these standards streamline cybersecurity requirements across the EU, some restrictions still apply. 
Manufacturers whose products fall outside these harmonized criteria may need additional assessments from a Notified Body to confirm compliance.

Additionally, businesses should align with existing EU cybersecurity frameworks, including:

  • Radio Equipment Directive (RED) 2014/53/EU – Ensures security for all radio devices sold in the EU
  • ETSI EN 303 645 – Baseline cybersecurity standards for consumer IoT
  • CEN/CENELEC EN 18031– Comprehensive security guidelines for connected technology

How C-PRAV can Help

Navigating EU cybersecurity compliance can be complex, but C-PRAV provides expert guidance to simplify the process. Our team ensures that your products:

Meet the latest EU cybersecurity requirements

Pass all necessary compliance testing

Achieve smooth certification for European market entry

Staying ahead of evolving cybersecurity regulations is essential for global market success. 

Partner with C-PRAV for seamless compliance solutions.

Email
Contact Us

Phone: +61 3 9087 9383

Deep Dive into the EN 18031 Cybersecurity Standard

Looking for more details on the recently harmonized EN 18031 cybersecurity standards under the Radio Equipment Directive (RED)?

Our blog post breaks down:

  • The specific security requirements for internet-connected devices, data-processing equipment, and payment-enabled technologies.
  • Key compliance deadlines and presumption of conformity criteria.
  • Steps manufacturers must take to ensure full compliance with the new standards.
View Blog