You manufacture or import baby monitors — audio monitors, video monitors, breathing sensors with radio function. Some connect to WiFi. Some use DECT or local Bluetooth only. You assumed that without internet, cybersecurity requirements do not apply. Art. 1(2)(b) of the Delegated Regulation says otherwise: radio equipment designed or intended exclusively for childcare is subject to Art. 3(3)(e) if it processes personal data — with or without internet. A baby monitor that captures audio or video of a child processes personal data under GDPR Art. 4(1). The requirement is in force from 1 August 2025. REDCheck generates the 5 PDF documents. 30 minutes. €99 per product. 100% in your browser.
€99 one-time payment · 5 PDF documents in ZIP · 30 minutes · 100% in your browser
The Delegated Regulation treats childcare equipment as a protected category. The threshold for cybersecurity requirements is LOWER than for general consumer electronics: no internet connection needed.
You enter your product specifications. REDCheck structures the cybersecurity documentation requirement by requirement, following the EN 18031 categories.
For GENERAL consumer electronics, that is partially correct: Art. 3(3)(d) requires internet connectivity. But Art. 1(2)(b) creates a SPECIAL CATEGORY for childcare equipment. Art. 3(3)(e) applies to childcare radio equipment that processes personal data — regardless of internet connectivity. A DECT baby monitor that transmits audio of a baby processes personal data. Art. 3(3)(e) applies.
Audio recordings of a child in a domestic environment are personal data under Art. 4(1) of GDPR. The voice of a baby, the sounds of a household, conversations captured incidentally — all constitute personal data relating to identifiable natural persons. A baby monitor that transmits audio processes personal data by definition.
EN 50134 covers functional requirements for social alarm systems. It is not a harmonised standard under Directive 2014/53/EU for cybersecurity. The relevant standards are EN 18031-1 (network protection) and EN 18031-2 (personal data protection). These are separate standards with different scope and requirements.
5 PDF documents generated from your product data. Each cites the exact article of Directive 2014/53/EU that it covers.
Art. 1, Del. Reg. (EU) 2022/30 + Art. 3(3), Dir. 2014/53/EU.
Art. 21 + Annex V. Requirement-by-requirement documentation.
Arts. 3(3)(d) and (e). Structured risk table.
Art. 18 + Annex VI.
Art. 10(9) + Annex VII.
Look before you buy — Download sample dossier (PDF, fictitious product) — Real structure, real articles, real format. Fictitious data.
Generated from your data, in your browser. No product data leaves your computer.
5 PDF documents. 30 min. €99 per product. The documentation that Art. 21 requires BEFORE your product can bear CE marking.
If you fully apply EN 18031, you can self-declare via Module A (Annex II) without a Notified Body. If you partially apply or don't apply the harmonised standards, Art. 17(4) requires third-party involvement. REDCheck does not replace a Notified Body — it generates the documentation that is a prerequisite for any conformity route.
We do not sell testing. We do not sell consulting. We sell the tool that structures your cybersecurity documentation under Art. 21 and Annex V.
Childcare products receive priority enforcement treatment from market surveillance authorities.
Non-compliant childcare products receive priority treatment from market surveillance authorities. A baby monitor with cybersecurity vulnerabilities will be published in the Safety Gate system and may trigger media coverage. For childcare products, the reputational damage is catastrophic.
Non-compliant childcare products are published in the EU Safety Gate system. The product, manufacturer and country of origin are publicly identified.
Amazon, eBay and European marketplaces require conformity documentation. Children's products receive heightened scrutiny. Listings can be removed without prior notice.
| Alternative | Cost | What you get |
|---|---|---|
| Notified Body / accredited lab | €5,000–10,000 per model | 3–6 months. Full third-party assessment. |
| Cybersecurity consultancy | €5,000–15,000 per model | Custom report. Weeks of wait. |
| Assemble documentation yourself | €0 (your time) | EN 18031 has 600+ pages. No template. |
| REDCheck | €99 | 5 documents, 30 min, per model |
If you document 10 or more product models, write to us for the Professional Pack: €999 for 70 generations with a single license key.
Request volume pricingREDCheck generates a document structured under Art. 21 and Annex V of Directive 2014/53/EU based on the information you enter. The truthfulness, accuracy and completeness of that information is your responsibility as manufacturer of the radio equipment.
We guarantee that the document structure follows Art. 21 and Annex V of Directive 2014/53/EU and that the legal references cited are correct as of the latest verification date. We do not guarantee that a specific document will be accepted by a market surveillance authority in a specific case, nor by a commercial buyer in a procurement process.
REDCheck is not legal advice. For specific situations, consult a lawyer or specialised regulatory consultancy.
Five PDF documents. Art. 21 and Annex V fully structured. Directive 2014/53/EU. Your product data never leaves your computer. The ZIP you download is yours permanently.