Directive 2014/53/EU · Del. Reg. 2022/30Generate my documentation — €99
ACTIVE — Enforcement tracker · Deadline dashboard · Transposition status — Updated weekly from EUR-Lex, Safety Gate, OEIL & 12 official sourcesView regulatory intelligence →

UKCA and CE are now two completely different regimes for radio equipment. From 1 August 2025, CE marking requires cybersecurity documentation. UKCA does not. If you sell in both markets, you need two separate regulatory approaches.

Before Brexit, one CE marking covered everything. Since 1 January 2021, UKCA covers Great Britain, CE covers the EU. Delegated Regulation (EU) 2022/30 activated cybersecurity for the EU. The UK has NOT adopted an equivalent. If you sell in both markets, your EU documentation must include cybersecurity. REDCheck generates the 5 PDF documents for the EU. 30 minutes. €99 per product.

Generate my RED documentation — €99Free: does my product need RED cybersecurity documentation?

€99 one-time payment · 5 PDF documents in ZIP · 30 minutes · 100% in your browser

Directive 2014/53/EU · Art. 3(3)(d)(e)(f) · Art. 21 + Annex V · Art. 18 + Annex VI · Art. 10(9) + Annex VII · Delegated Reg. (EU) 2022/30 · EN 18031-1, -2, -3

UKCA vs CE cybersecurity: the key differences

The divergence on cybersecurity is the most significant regulatory gap since Brexit for radio equipment manufacturers.

CE: Art. 3(3)(d)+(e)+(f)
EU requires cybersecurity documentation — mandatory from 1 August 2025.
UKCA: No equivalent
The UK has not adopted Delegated Regulation (EU) 2022/30.
2 regimes
UK manufacturers selling in both markets need separate compliance strategies.

What REDCheck does with your product data

You enter your product specifications. REDCheck structures the cybersecurity documentation requirement by requirement.

1
Company details
Legal name, role under Directive 2014/53/EU, country, EU contact.
2
Product classification
Determines applicable requirements: Art. 3(3)(d), (e) and/or (f).
3
Cybersecurity assessment
EN 18031 categories: access control, authentication, secure comms, updates, vulnerability management.
4
Risk assessment
Structured risk table per applicable requirement.
5
EU Declaration of Conformity
Art. 18 + Annex VI. Basis for CE marking.
6
Download ZIP
5 PDFs. Add to technical file. Retain 10 years (Art. 10(4)).

Three mistakes about UKCA vs CE cybersecurity

COMMON ERROR

"UKCA and CE are basically the same — just different logos"

Since Brexit, the UK has frozen its regulatory framework. Delegated Regulation (EU) 2022/30 was adopted AFTER Brexit. The UK did not adopt it. CE and UKCA have diverged significantly on cybersecurity.

COMMON ERROR

"If I comply with the harder regime, the easier one is automatic"

CE and UKCA are legally independent. Complying with one does not satisfy the other. Each requires its own conformity assessment and declaration.

COMMON ERROR

"The UK will adopt the same cybersecurity rules eventually"

The UK PSTI Act 2022 is DIFFERENT from Directive 2014/53/EU and Delegated Regulation (EU) 2022/30. Waiting is not a compliance strategy.

What's in the ZIP

5 PDF documents per product model.

1

Product Classification

Art. 1, Del. Reg. (EU) 2022/30 + Art. 3(3), Dir. 2014/53/EU.

2

Cybersecurity Technical Documentation

Art. 21 + Annex V.

3

Risk Assessment

Arts. 3(3)(d) and (e).

4

EU Declaration of Conformity

Art. 18 + Annex VI.

5

Simplified Declaration + Label

Art. 10(9) + Annex VII.

Look before you buy — Download sample dossier (PDF, fictitious product)

Generated from your data, in your browser. No product data leaves your computer.

What you pay

🧾 EU CONSULTANCY
£8,000–15,000
Per model. Weeks.
✓ REDCHECK
€99
5 documents. 30 min per model.

Technical documentation and third-party testing: two layers

● LAYER 1

Cybersecurity technical documentation (Annex V)

5 PDF documents. 30 min. €99. Art. 21 prerequisite for any conformity route.

∅ LAYER 2

Conformity assessment by a Notified Body

If you fully apply EN 18031, self-declare via Module A (Annex II). If not, Art. 17(4) requires third-party involvement.

We do not sell testing. We do not sell consulting. We sell the tool that structures your cybersecurity documentation.

What happens without cybersecurity documentation

Art. 46 of Directive 2014/53/EU requires effective, proportionate and dissuasive penalties.

🇪🇺
Market withdrawal
Immediate

Arts. 40(1), 40(4) and 43.

🇩🇪
Germany
€3,000–€30,000

Produktsicherheitsgesetz.

🛒
Amazon EU listing removal
Revenue loss

UKCA not accepted. Listings may be suspended.

Alternatives

AlternativeCostWhat you get
EU consultancy£8,000–15,000/modelWeeks.
Dual UKCA+CE consultant£12,000–25,000/modelBoth regimes. Expensive.
Assemble yourself£0EN 18031: 600+ pages.
REDCheck€995 documents, 30 min, per model

Multiple product models?

Professional Pack: €999 for 70 generations.

Request volume pricing
Reply within one business day.

What REDCheck guarantees and what it does not

REDCheck generates a document structured under Art. 21 and Annex V of Directive 2014/53/EU based on the information you enter. The truthfulness, accuracy and completeness of that information is your responsibility as manufacturer of the radio equipment.

We guarantee that the document structure follows Art. 21 and Annex V of Directive 2014/53/EU and that the legal references cited are correct as of the latest verification date.

REDCheck is not legal advice. For specific situations, consult a lawyer or specialised regulatory consultancy.

Frequently asked questions

Does the UK PSTI Act cover the same requirements as RED cybersecurity?
No. The PSTI Act covers passwords, vulnerability reporting and update periods. It is narrower than Delegated Regulation (EU) 2022/30. They are separate regimes.
Can I use the same test reports for UKCA and CE?
EMC/safety test reports may work for both if they reference the same standards. For cybersecurity, there is no UKCA equivalent to EN 18031.
Can I use Module A?
Yes, if you fully apply EN 18031. Art. 17(3)(a).
My distributor says docs are my responsibility. Correct?
Yes. Art. 10(1) and 10(3).
CRA?
Repealed from 11 December 2027.
Is it a subscription?
No. One-time payment. Each license includes a 30-day editing window and up to 10 regenerations. The 5 PDF documents you download are yours permanently.
Can I request a refund?
Under Art. 16(m) of Directive (EU) 2011/83 on consumer rights, by activating the license you give express consent to the immediate generation of the digital content, waiving the 14-day right of withdrawal. Refunds are accepted only for reproducible technical failures reported to hello@solidwaretools.com within 14 days of purchase.
What if the regulation changes?
If Directive 2014/53/EU, Delegated Regulation (EU) 2022/30 or the EN 18031 standards change during your license validity period, you can regenerate the documents with the updated version of the generator at no additional cost.

Official legal sources

⚠️ Important notice: REDCheck is a documentary self-assessment tool, not legal advice or a third-party audit. The document is generated from the data you enter. The accuracy of the data is your responsibility under Art. 10(1) of Directive 2014/53/EU. REDCheck does not replace a conformity assessment by a Notified Body where required under Art. 17(4) of the Directive.

UKCA does not cover EU cybersecurity. Generate the CE cybersecurity documentation in 30 minutes.

Five PDF documents. Art. 21 and Annex V fully structured. Directive 2014/53/EU. Your product data never leaves your computer.

€99 per product
One-time payment · No subscription · 30 minutes · 10 regenerations · 30-day editing window · Professional Pack: €999
Generate my RED documentation — €99

Related landings

🇬🇧 UK

UK company selling in the EU: RED cybersecurity documentation

🚀 Startups

UK IoT startup: EU RED Directive compliance post-Brexit

📦 Importers

German importer: RED cybersecurity documentation

✓ Last regulatory check: 6 May 2026 · No substantive changes detected · View history