Directive 2014/53/EU · Del. Reg. 2022/30Generate my documentation — €99
ACTIVE — Enforcement tracker · Deadline dashboard · Transposition status — Updated weekly from EUR-Lex, Safety Gate, OEIL & 12 official sourcesView regulatory intelligence →

Rotterdam is the gateway for 40% of Asian electronics entering the EU. As a Dutch importer, you are the first economic operator on EU soil. Art. 12 of Directive 2014/53/EU places verification obligations squarely on you — and the NVWA has warned that enforcement will begin.

You import radio equipment from China, Vietnam and Taiwan. You have 180 active product references across 22 suppliers. From 1 August 2025, every internet-connected product requires cybersecurity documentation under Art. 3(3)(d) and (e). You cannot ask 22 suppliers to pay €5,000–10,000 each per model — they will resist, delay or switch importers. REDCheck costs €99 per model. Send the link to all 22 suppliers. Professional Pack: €999 for 70 generations — one license key, distribute to all suppliers.

Generate RED documentation — €99Free: does this product need RED cybersecurity documentation?

€99 one-time payment · 5 PDF documents in ZIP · 30 minutes · 100% in your browser

Directive 2014/53/EU · Art. 3(3)(d)(e)(f) · Art. 21 + Annex V · Art. 18 + Annex VI · Art. 10(9) + Annex VII · Delegated Reg. (EU) 2022/30 · EN 18031-1, -2, -3

Dutch importer cybersecurity obligations: the numbers

The Netherlands is the primary entry point for Asian electronics into the EU. The NVWA (Nederlandse Voedsel- en Warenautoriteit) is the market surveillance authority for radio equipment.

40%
Share of Asian electronics entering the EU through the Port of Rotterdam
180 references
A typical large importer has hundreds of active product references — each requiring cybersecurity documentation
€999
Professional Pack: 70 generations. Distribute to all suppliers. One license key.

How REDCheck helps you as importer

The documentation obligation is the manufacturer's (Art. 10). But if your supplier cannot produce it, your products are blocked. REDCheck is a tool you can send to your supplier.

1
Send the link to your supplier
Your manufacturer enters their company and product data into REDCheck. The tool runs in their browser — their data never leaves their computer.
2
Supplier completes product classification
Determines which essential requirements apply: Art. 3(3)(d), Art. 3(3)(e), or both.
3
Supplier completes cybersecurity assessment
Requirement-by-requirement review mapped to EN 18031-1 and EN 18031-2 categories.
4
Supplier generates ZIP with 5 PDFs
Product classification, technical documentation, risk assessment, EU declaration of conformity, simplified declaration + label.
5
You verify and file
Art. 12(2): verify that documentation exists. Art. 12(8): keep a copy of the EU declaration of conformity for 10 years.
6
Place on market
Your product is legally compliant. You have fulfilled Art. 12(1) and 12(2).

Three mistakes Dutch importers make about RED cybersecurity

COMMON ERROR

"My suppliers all have CE marking — ik ben gedekt"

CE marking applied BEFORE 1 August 2025 covers EMC (Art. 3(1)(b)) and safety (Art. 3(1)(a)). It does NOT cover the cybersecurity requirements of Art. 3(3)(d) and (e) activated by Delegated Regulation (EU) 2022/30. You must verify that the technical documentation now INCLUDES cybersecurity (Art. 12(2)).

COMMON ERROR

"The NVWA only inspects food and consumer products"

The NVWA is the designated market surveillance authority for radio equipment in the Netherlands under Directive 2014/53/EU. The NVWA has publicly warned that importers of radio equipment without proper conformity documentation will face enforcement action.

COMMON ERROR

"I can't force 22 suppliers to produce documentation"

You cannot force them. But Art. 12(1) prevents you from placing non-compliant products on the market. You need a scalable solution. REDCheck at €99 per model — or the Professional Pack at €999 for 70 generations — gives your suppliers a tool that takes 30 minutes per model. The cost is trivial. The alternative is losing 180 active product references.

What's in the ZIP

5 PDF documents generated from the manufacturer's product data. Each cites the exact article of Directive 2014/53/EU that it covers.

1

Product Classification

Art. 1, Del. Reg. (EU) 2022/30 + Art. 3(3), Dir. 2014/53/EU.

2

Cybersecurity Technical Documentation

Art. 21 + Annex V. Requirement-by-requirement documentation.

3

Risk Assessment

Arts. 3(3)(d) and (e). Structured risk table.

4

EU Declaration of Conformity

Art. 18 + Annex VI.

5

Simplified Declaration + Label

Art. 10(9) + Annex VII.

Look before you buy — Download sample dossier (PDF, fictitious product) — Real structure, real articles, real format. Fictitious data.

Generated from your data, in your browser. No product data leaves your computer.

What the alternatives cost

🧾 22 SUPPLIERS × NOTIFIED BODY
€5,000–10,000 per model
180 references. Even at 1 model per reference = €900,000–1,800,000. Unscalable.
✓ REDCHECK PROFESSIONAL PACK
€999
70 generations. Distribute to all 22 suppliers. Additional packs available.

Technical documentation and third-party testing: two layers

● LAYER 1

Cybersecurity technical documentation (Annex V)

5 PDF documents. 30 min. €99 per product. The documentation that Art. 21 requires BEFORE your product can bear CE marking.

∅ LAYER 2

Conformity assessment by a Notified Body

If you fully apply EN 18031, you can self-declare via Module A (Annex II) without a Notified Body. If you partially apply or don't apply the harmonised standards, Art. 17(4) requires third-party involvement. REDCheck does not replace a Notified Body — it generates the documentation that is a prerequisite for any conformity route.

We do not sell testing. We do not sell consulting. We sell the tool that structures your cybersecurity documentation under Art. 21 and Annex V.

What happens to Dutch importers without verified cybersecurity documentation

The Netherlands enforces product safety through the NVWA.

🇳🇱
NVWA enforcement
€450–900,000

The NVWA can impose orders subject to periodic penalty payments, administrative fines, and require product recall or withdrawal.

🇪🇺
Cross-border impact
EU-wide

Products entering through Rotterdam are distributed across the EU. Art. 40(2): if non-compliance is not restricted to one Member State, the authority informs the Commission and all other Member States.

🛒
Marketplace listing removal
Revenue loss

Amazon and other EU marketplaces require CE conformity documentation. Missing cybersecurity documentation may trigger listing suspension.

Options for your suppliers

OptionCostWhat your supplier gets
Notified Body / lab in China€5,000–10,000 per model3–6 months. Full third-party assessment.
EU-based cybersecurity consultancy€5,000–15,000 per modelCustom report. Weeks of wait.
Supplier assembles documentation€0 (their time)EN 18031 has 600+ pages. No guidance.
REDCheck — send them the link€995 documents, 30 min, per model

180 active references. 22 suppliers. One solution.

Professional Pack: €999 for 70 generations. Share the license key with all your suppliers. Each generates documentation for their product models. Additional packs available for larger portfolios.

Request volume pricing
Reply within one business day.

What REDCheck guarantees and what it does not

REDCheck generates a document structured under Art. 21 and Annex V of Directive 2014/53/EU based on the information you enter. The truthfulness, accuracy and completeness of that information is your responsibility as manufacturer of the radio equipment.

We guarantee that the document structure follows Art. 21 and Annex V of Directive 2014/53/EU and that the legal references cited are correct as of the latest verification date. We do not guarantee that a specific document will be accepted by a market surveillance authority in a specific case, nor by a commercial buyer in a procurement process.

REDCheck is not legal advice. For specific situations, consult a lawyer or specialised regulatory consultancy.

Frequently asked questions — Dutch importer RED cybersecurity

Can I distribute the Professional Pack license key to multiple suppliers?
Yes. The Professional Pack provides a single license key for 70 generations. You can share it with any number of suppliers. Each generation covers one product model.
Is the NVWA the enforcement authority for RED in the Netherlands?
Yes. The NVWA (Nederlandse Voedsel- en Warenautoriteit) is the market surveillance authority for radio equipment in the Netherlands under Directive 2014/53/EU.
What if some of my suppliers refuse to use REDCheck?
Art. 12(1) is absolute: you cannot place non-compliant products on the market. If a supplier refuses to produce cybersecurity documentation by any means, you must suspend their products until documentation is provided.
If I place a product under my own brand, am I the manufacturer?
Yes. Art. 14 of Directive 2014/53/EU: an importer who places radio equipment under their own name or trade mark is considered the manufacturer and is subject to Art. 10 obligations — including producing the technical documentation.
What happens when the CRA replaces the RED cybersecurity requirements?
The Cyber Resilience Act (Regulation (EU) 2024/2847) will gradually replace the cybersecurity requirements of Art. 3(3)(d), (e) and (f) of Directive 2014/53/EU. The transition is expected by 2027–2028. Until the CRA fully applies, the RED cybersecurity requirements remain in force. Documentation generated now remains valid for products placed on the market during the RED regime.
Is it a subscription?
No. One-time payment. Each license includes a 30-day editing window and up to 10 regenerations. The 5 PDF documents you download are yours permanently.
Can I request a refund?
Under Art. 16(m) of Directive (EU) 2011/83 on consumer rights, by activating the license you give express consent to the immediate generation of the digital content, waiving the 14-day right of withdrawal. Refunds are accepted only for reproducible technical failures reported to hello@solidwaretools.com within 14 days of purchase.
What if the regulation changes?
If Directive 2014/53/EU, Delegated Regulation (EU) 2022/30 or the EN 18031 standards change during your license validity period, you can regenerate the documents with the updated version of the generator at no additional cost.

Official legal sources

⚠️ Important notice: REDCheck is a documentary self-assessment tool, not legal advice or a third-party audit. The document is generated from the data you enter. The accuracy of the data is your responsibility under Art. 10(1) of Directive 2014/53/EU. REDCheck does not replace a conformity assessment by a Notified Body where required under Art. 17(4) of the Directive.

22 suppliers. 180 references. One Professional Pack. €999.

Send the link to your suppliers. 30 minutes per model. Art. 21 and Annex V fully structured.

€99 Professional Pack
70 generations · Distribute to all suppliers · One license key · Additional packs available
Generate RED documentation — €99

Related landings

📦 Art. 12

Importer obligations: RED cybersecurity under Art. 12
🇩🇪 Germany

German importer: RED cybersecurity documentation
🇨🇳 China

EU importer: Chinese supplier cybersecurity documentation
✓ Last regulatory check: 6 May 2026 · No substantive changes detected · View history