EU Commission proposes new cybersecurity rules for smartphones
The increasing number of wireless devices like mobile phones, smart watches and fitness trackers increase cybersecurity risks, the EU Commission said introducing new rules. Makers of such devices, including wireless toys, must take measures to prevent unauthorised access or transmission of personal data.
”Wireless devices have become a key part of the life of citizens. They access our personal information and make use of the communication networks. The COVID-19 pandemic has dramatically increased the use of radio equipment for either professional or personal purposes.”
”In recent years, studies by the Commission and various national authorities identified an increasing number of wireless devices that pose cybersecurity risks.”
”Such studies have for instance flagged the risk from toys that spy the actions or conversations of children; unencrypted personal data stored in our devices, including those related with payments, that can be easily accessed; and even equipment that can misuse the network resources and thus reduce their capability.”
The act to Radio Equipment Directive introduces new legal requirements for cybersecurity safeguards, which manufacturers will have to take into account in the design and production of the concerned products. The Commission says it will protect citizens’ privacy and personal data, prevent the risks of monetary fraud as well as ensure better resilience of our communication networks.
The measures cover wireless devices such as mobile phones, tablets and other products capable of communicating over the internet; toys and childcare equipment such as baby monitors; as well as a range of wearable equipment such as smart watches or fitness trackers.
The Commission says the measures will:
- Improve network resilience: Wireless devices and products will have to incorporate features to avoid harming communication networks and prevent the possibility that the devices are used to disrupt website or other services functionality.
- Better protect consumers’ privacy: Wireless devices and products will need to have features to guarantee the protection of personal data. The protection of children’s rights will become an essential element of this legislation. For instance, manufacturers will have to implement new measures to prevent unauthorised access or transmission of personal data.
- Reduce the risk of monetary fraud: Wireless devices and products will have to include features to minimise the risk of fraud when making electronic payments. For example, they will need to ensure better authentication control of the user in order to avoid fraudulent payments.
The act will come into force following a two-month scrutiny period but it must first be approved by the European Council and Parliament.
Manufacturers will have a transition period of 30 months to start complying with the new legal requirements. This means the new requirements could be applicable in mid-2024.
Moonshot News is an independent European news website for all IT, Media and Advertising professionals, powered by women and with a focus on driving the narrative for diversity, inclusion and gender equality in the industry.
Our mission is to provide top and unbiased information for all professionals and to make sure that women get their fair share of voice in the news and in the spotlight!
We produce original content, news articles, a curated calendar of industry events and a database of women IT, Media and Advertising associations.
