Radio Equipment Directive (RED) 2014/53/EU

• The Radio Equipment Directive (RED 2014/53/EU) regulates the placement of wireless and radio-enabled devices on the EU market.

• It applies to products that transmit or receive radio waves for communication or positioning (e.g. smartphones, routers, IoT devices).

• Key requirements include safety, electromagnetic compatibility (EMC), and efficient use of the radio spectrum.

• CE marking is mandatory and based on a conformity assessment and a Declaration of Conformity (DoC).

• Cybersecurity requirements under Regulation (EU) 2022/30 will apply from August 2025.

RED 2014/53/EU establishes the regulatory framework for placing radio equipment on the European market. It applies to all devices that use radio waves for wireless communication or positioning, such as mobile phones, Wi-Fi devices, Bluetooth accessories, and similar products.

Together with the EMC Directive and the Low Voltage Directive (LVD), RED is one of the key EU regulations for CE marking.

These core objectives directly impact manufacturers and importers, setting clear requirements for product compliance:

Safety Requirements

Manufacturers must ensure that their devices do not pose any health or safety risks. The directive mandates comprehensive protection for:

• End users

• Domestic animals

• Property

Electromagnetic Compatibility (EMC)

To guarantee the reliable operation of electronic devices, the directive requires:

• Devices must not generate impermissible electromagnetic interference.

• Devices must be sufficiently protected against external electromagnetic disturbances.

• Different devices must be able to operate together without interference.

Radio Frequency Spectrum Efficiency

The directive promotes:

• Efficient use of limited radio frequencies

• Minimization of frequency interference

• Effective communication between different devices

These objectives not only ensure product quality but also define clear requirements for the development and approval of radio devices in the European market.

The Radio Equipment Directive (RED) determines which radio devices must comply before entering the EU market.

The conformity assessment procedure depends on the product’s characteristics, risk classification, and how harmonized standards are applied. The following table outlines typical scenarios to help identify the appropriate assessment route:

Note: The involvement of a Notified Body is mandatory when harmonized standards are not fully applied or when the product is considered high risk. Manufacturers may also voluntarily involve a Notified Body to support market access.

Manufacturers must compile and retain a technical file for at least 10 years after the product has been placed on the market. The documentation must include:

• Device description and technical specifications

• Design documents (e.g., schematics, circuit diagrams)

• Conformity evidence and risk assessment

• Test reports in accordance with applied standards

• User manuals and safety instructions

Authorities may request this documentation at any time during market surveillance.

Step 1: Determine Requirements

• Check whether your product falls within the RED scope

• Identify applicable EU requirements and harmonized standards

• Define the appropriate conformity assessment route (A, B+C, or H)

Step 2: Prepare Documentation

• Compile technical documentation and risk assessment

• Ensure all supporting evidence aligns with applicable standards

Step 3: Testing & Certification

• Perform required tests (internally or via external lab)

• Involve a Notified Body if required

• Issue the EU Declaration of Conformity (DoC)

Step 4: CE Marking & Market Access

• Apply the CE marking to the product and packaging

• Set up internal procedures for market surveillance and compliance control

• Maintain documentation for post-market inspection

Compliance Deadline: Cybersecurity requirements under Article 3.3 (d)–(f) will become mandatory from August 1, 2025. Ensure timely updates to documentation and procedures for affected products.

Wireless innovation and increasing device connectivity bring new regulatory challenges under the Radio Equipment Directive (RED). To address risks such as unauthorized access, data breaches, and spectrum congestion, the EU has expanded RED requirements for cybersecurity, interoperability, and spectrum efficiency. These provisions are especially relevant for manufacturers of IoT devices, 5G products, and smart home technologies.

Cybersecurity Requirements (mandatory from August 2025)

From August 1, 2025, new cybersecurity requirements under Articles 3(3)(d), (e), and (f) of the RED become legally binding. These cover software protection, secure data handling, and fraud prevention. The following harmonized standards provide a presumption of conformity—with restrictions:

• EN 18031-1:2024 – Internet-connected radio equipment

• EN 18031-2:2024 – Devices processing personal data (e.g. toys, wearables)

• EN 18031-3:2024 – Devices used for virtual or financial transactions

However, these standards do not provide a presumption of conformity in the following cases:

• If users can bypass or disable password requirements (clauses 6.2.5.1, 6.2.5.2)

• If parental access control is not ensured in applicable equipment categories (EN 18031-2:2024, clauses 6.1.3–6.1.6)

• If assessment relies solely on explanatory sections like “Rationale” or “Guidance”

In such cases, manufacturers must conduct a full conformity assessment, possibly involving a Notified Body, as specified in EU Decision (EU) 2025/138.

Preparing for RED compliance with cybersecurity requirements for IoT? Learn more about test procedures and applicable standards—such as EN 303 645 and EN 18031—on our IoT cybersecurity certification page.

IoT and RED Compliance

The IoT sector, expected to reach $1.35 trillion by 2025, represents a major field of application for the RED. Common devices include:

• Smart sensors and control units

• Gateways and edge computing systems

• Consumer products like smart thermostats and home hubs

RED now covers not only radio interfaces but also:

• Interoperability across networked environments

• Data protection and secure access mechanisms

• Energy-efficient communication protocols

These requirements are further specified in Regulation (EU) 2022/30, which supplements the RED with dedicated cybersecurity provisions for connected devices.

5G and Spectrum Management

The roll-out of 5G technology increases demands on spectrum resources and regulatory oversight. Under the RED:

• Devices must comply with updated harmonized standards for spectrum efficiency

• Stricter allocation and coexistence rules apply, especially in shared bands

• Manufacturers must demonstrate interference-free operation in diverse use cases (e.g. automotive, industrial)

Particular attention is required for dynamic spectrum access and coordination mechanisms in complex RF environments.

EMC Compliance for Smart Devices

As more products integrate wireless technologies, EMC challenges increase. To ensure coexistence and avoid harmful interference, RED mandates:

• EMI testing for multi-radio systems such as wearables or smart home hubs

• Specific procedures for software-defined radios (SDR), which dynamically adapt frequencies

• Documentation of coexistence strategies in crowded RF environments

EMC considerations are especially important in environments where numerous connected devices operate simultaneously and must remain interoperable.

Summary

The RED framework is evolving to match the pace of wireless innovation. Manufacturers must anticipate regulatory developments in cybersecurity, spectrum efficiency, and electromagnetic compatibility. By integrating compliance strategies early in the product lifecycle, they can ensure legal certainty, technical reliability, and sustainable market access across the EU.