Contact information
Free service hotline
400-7558988
TEL: 0769-85075888-6618
13925591357
Fax: 0769-85075898
Mail: net04@gtggroup.com
ADD: Huacan Industrial Park, No. 2 Keji 8th Road, Songshan Lake Park, Dongguan City, Guangdong Province
Wireless manufacturers exporting to the UK, take note! This violation will be subject to a fine of £10 million or 4% of your global turnover—whichever is greater!
In today's digital age, cybersecurity has become a global priority. With the rapid proliferation of IoT devices, smart home products, and various wireless-connected gadgets, our lives have grown more convenient while also introducing unprecedented security challenges. Cyberattacks, data breaches, and privacy violations occur with alarming frequency, threatening not only the security and privacy of individual users but also posing significant risks to the economic security of businesses and nations. Consequently, an increasing number of countries are enacting stringent cybersecurity regulations to elevate device security standards and safeguard user rights.
On April 29, 2024, the United Kingdom formally commenced enforcement of the Product Safety and Telecommunications Infrastructure Act 2023, a critical piece of legislation concerning cybersecurity. Wireless manufacturers requiring export to the UK must pay particular attention to the requirements of this Act. Violations may result in fines of up to £10 million or 4% of global turnover. Compliance with the Act is essential to avoid substantial penalties and regulatory risks.
The vast majority of IoT/connected products, such as smartphones, smart home appliances, routers, smart home assistants, wearable fitness trackers, outdoor leisure products, connected children's toys and baby monitors, tablets with cellular connectivity, and computers (desktops, laptops) used by children under 14 years old. This also includes products that cannot connect directly to the internet but can connect to multiple other devices simultaneously, such as smart lighting fixtures, smart controllers, and IoT base stations.
Exempted Products: Computers (desktops, laptops) used by children aged 14 and above; tablets without cellular connectivity; medical devices; electric vehicle charging stations and smart meter products; and products supplied to Northern Ireland that comply with relevant legislative requirements.
PSTI certification requirements for cybersecurity are primarily divided into three aspects:
1. Default Password Security
2. Vulnerability Disclosure Management
3. Software Updates
Compliance with these requirements can be directly assessed against the PSTI certification criteria or demonstrated by referencing the cybersecurity standard ETSI EN 303 645 for consumer IoT products.
In other words, meeting the requirements of the three sections and items specified in ETSI EN 303 645 is equivalent to meeting the requirements of the UK PSTI certification.
As a professional third-party certification and testing organization, we possess extensive experience and specialized expertise to provide comprehensive PSTI Act compliance services, including:
Consulting Services:
Assisting you in understanding and implementing regulatory requirements.
Testing and Certification:
Delivering efficient and accurate product testing and certification services.
Compliance Training:
Providing professional compliance training for your team to enhance overall awareness and capabilities.
The implementation of the PSTI Act signifies a further elevation of cybersecurity standards and represents a significant test of product quality and safety performance for enterprises. We advise all wireless manufacturers exporting to the UK to take prompt action to ensure your wireless devices comply with the requirements of the PSTI Act, thereby avoiding unnecessary legal risks and financial losses.