New IoT cybersecurity regulations, including the Radio Equipment Directive Delegated Act (RED DA) and the Cyber Resilience Act (CRA), have come into effect, defining mandatory compliance requirements for IoT device manufacturers. RED DA applies to all smart devices that provide wireless communication, either directly or indirectly connected to the internet, while CRA also covers wired devices.
RED DA became effective on August 1, 2025, requiring all IoT device manufacturers exporting to the European Union to comply. CRA will be implemented in stages, with partial enforcement in September 2026 and full enforcement by December 2027. Non-compliance may result in penalties of up to €15 million or 2.5% of annual turnover (whichever is higher).
Through our end-to-end cybersecurity solutions, Empa ensures continuous, 100% compliance with these regulations, providing peace of mind and safeguarding IoT devices throughout their lifecycle.
EN − TL
Türkçe
