United Kingdom: there is something new for the security of telecommunications products and infrastructure!
To reassure British consumers about the security around the design and manufacture of their consumer product that can connect to the Internet or a network, on April 29, the PSTI Act 2022 will come into force.
Whether your product is designed in the UK or not, if you want to market it in England you will need to meet the requirements from this year.
The Product Security and Telecommunications Infrastructure (PSTI) Act 2022 and the Product Security and Telecommunications Infrastructure (Security Requirements for Relevant Connectable Products) Regulations 2023 will require manufacturers of large public connectables that sell to UK consumers to comply with basic security requirements. These are based on the three main principles of the Consumer Internet of Things (IoT) Security Code of Practice and align with key provisions of the leading global cybersecurity standard for IoT general public, ETSI EN 303 645.
When the regulations come into effect, consumers who purchase new connectable products will benefit from industry-leading security protections against the threat of cybercrime.
Scope of obligations
To comply with the requirements of the law, whether you are a manufacturer, importer or distributor you will need to, in order to export your product to the UK, take into account and follow the security requirements relating to passwords, publication information about security issues and minimum security update periods.
All your new obligations are set out in Chapter Two of the PSTI Act 2022.
Do not delay in bringing your products into compliance if you wish
Our teams can support you in the procedures and tests to be carried out!