PROFESSIONAL PACKDir. 2014/53/EU + Del. Reg. 2022/30Buy pack — €999
LIVEEnforcement tracker · Deadline dashboard · Transposition status — Updated weekly from EUR-Lex, Safety Gate, OEIL & 12 official sourcesView regulatory intelligence →

Your members manufacture radio equipment — sensors, lighting, smart home, IoT. Since August 2025, every internet-connected product needs Art. 3(3) cybersecurity documentation. Each dossier takes 8 hours to draft. With 70 licenses, it takes 20 minutes.

You are an electronics trade association, an IoT industry group, or an SME business cluster. Your member companies manufacture connected products — home automation, sensors, lighting systems, smart devices. Delegated Regulation (EU) 2022/30 activated the cybersecurity requirements of Article 3(3)(d), (e), and (f) of Directive 2014/53/EU on 1 August 2025. Many members believe their existing CE marking covers cybersecurity. It does not. REDCheck Professional Pack: 70 licenses, €999 one-time. 8 structured PDF documents per product. Distribute license codes to members. Each member generates their own dossier in 20 minutes.

Buy pack — €999See what each dossier includes

€999 · One-time · 70 dossiers · 8 PDFs each · Your data never leaves your browser

Built on Directive 2014/53/EU + Delegated Regulation (EU) 2022/30 · Art. 3(3)(d)(e)(f) mapped · Annex V technical documentation · EU Declaration of Conformity (Annex VI) · 100% browser-side — GDPR-native

The numbers that matter for your member companies

Your members are asking for guidance. National authorities are reminding that Art. 3(3)(d)(e)(f) requirements are in force and inspections are beginning. The question is whether you offer a practical solution — or leave each member to figure it out individually.

70
Dossiers per pack. One license per product per manufacturer. Distribute to members.
20 min
Per dossier — vs 6-10 hours of manual drafting per product.
8 PDFs
Per product. Scope analysis, Art. 3(3)(d)(e)(f) assessments, technical documentation, DoC, CE marking guidance.

Who uses the professional pack

REDCheck Professional Pack is built for organisations that represent manufacturers of connected products and want to offer Art. 3(3) cybersecurity documentation as a structured, practical member benefit.

🏛️
Electronics trade associations
Offering RED cybersecurity compliance support as a tangible member benefit for companies manufacturing connected products.
📡
IoT and connected device industry groups
Helping member companies document Art. 3(3)(d)(e)(f) compliance for WiFi, Bluetooth, Zigbee, and LoRa products.
🏢
SME business associations
Supporting small and medium-sized manufacturers who lack the regulatory resources to produce cybersecurity documentation independently.
🌍
Regional chambers and industry clusters
Providing compliance tooling to electronics manufacturing clusters where multiple companies face the same Art. 3(3) requirement.

What documenting 70 member products costs — with and without the pack

Without the pack — each member on their own
€28,000+
Individual approach: 70 products × 8h × €50-70/h of SME staff time
Or each member hires a compliance consultant:
70 products × €400-1,200 = €28,000-€84,000
(cost distributed across members, but total expenditure higher)

Many SMEs will simply not do it — until enforcement.
✓ REDCheck Professional Pack
€999
One purchase. 70 licenses. Distribute to members.
Total time: 70 × 20 min = ~23 hours
No subscription. No vendor dependency.
Members generate their own documentation.
Association cost per license: ~€14.27

What this pack actually changes for your members

Three inputs. Four answers. No signup required.

One license per product
Current time without the tool
Internal cost at member company
×24
Capacity multiplier
Same person. Same hours. More output.
384h
Hours returned to members' core work
Time that stays in product development
€28,000
Cost of doing it manually (across members)
Professional time — documentation alone
Members receive a license code and generate their own dossier. No centralised data handling.
Decentralised by design
Buy pack — €999
€999 one-time · ~€14.27 per dossier · No subscription · No vendor dependency

What each dossier includes: 8 structured documents

Every license generates a complete Art. 3(3) cybersecurity documentation package for one product. Each document cites the specific article of Directive 2014/53/EU and Delegated Regulation (EU) 2022/30 it addresses.

1

Product Scope Analysis

Classification per Delegated Regulation (EU) 2022/30: internet-connected, childcare, toy, wearable, payment-capable. Determines which Art. 3(3) requirements apply.

2

Art. 3(3)(d) Network Protection Assessment

Assessment demonstrating the product does not harm the network or its functioning nor misuse network resources. Article 3(3)(d) of Directive 2014/53/EU.

3

Art. 3(3)(e) Privacy & Data Protection Assessment

Safeguards for the protection of personal data and privacy of the user and of the subscriber. Article 3(3)(e) of Directive 2014/53/EU.

4

Art. 3(3)(f) Fraud Protection Assessment

Features ensuring protection from fraud for devices enabling transfer of money, monetary value, or virtual currency. Article 3(3)(f) of Directive 2014/53/EU.

5

Technical Documentation Package

Per Annex V of Directive 2014/53/EU. Product description, design, cybersecurity measures, conformity assessment references.

6

Conformity Assessment Route Analysis

Module determination per Article 17(3) or 17(4) of Directive 2014/53/EU for the applicable Art. 3(3) cybersecurity requirements.

7

EU Declaration of Conformity

Per Annex VI. Manufacturer identification, product identification, applicable requirements, conformity assessment reference. Article 18.

8

CE Marking Guidance Sheet

Printable reference with CE marking requirements, manufacturer contact, applicable Art. 3(3) requirements. Articles 19 and 20.

See before you buy — Download sample dossier (PDF, fictional company) — Real structure, real articles, real format. Fictional data.

How it works — four steps

1
Association buys the pack
70 license codes delivered by email via Gumroad. One payment. No subscription. No vendor negotiation.
2
Distribute codes to members
Each member receives one or more license codes. Codes are independent — no centralised dashboard needed.
3
Member generates the dossier
15-20 minutes. Guided form with references to every article. The member enters their own product data in their own browser. No data shared with the association.
4
Member downloads documentation
8 PDFs in a ZIP file. Structured, article-by-article. Ready for market surveillance inspection. The association delivered a tangible compliance benefit.

Three mistakes that cost associations relevance and member trust

Pattern 1 — Members believing their existing CE marking covers cybersecurity

Art. 3(3)(d)(e)(f) requirements are a separate documentation layer

A product can have a valid CE mark for electromagnetic compatibility, electrical safety, and radio spectrum use and still lack any cybersecurity documentation. Delegated Regulation (EU) 2022/30 activated Article 3(3)(d), (e), and (f) as separate requirements on 1 August 2025. These requirements need their own technical documentation. The existing CE marking process does not produce it.

Pattern 2 — Association not offering documentation support, leaving members to individual solutions

SMEs lack the regulatory resources to produce cybersecurity documentation alone

A 15-person manufacturer of smart lighting does not have a regulatory affairs department. They know they need CE marking because they have always needed it. They do not know they need separate cybersecurity documentation under Art. 3(3). When the association does not offer a practical solution, each member either ignores the requirement or pays €500-1,200 per product for external help. The association that provides a €14/product tool delivers immediate value.

Pattern 3 — Waiting for harmonised standards before documenting

The obligation is already in force — with or without harmonised standards

Delegated Regulation (EU) 2022/30 has been applicable since 1 August 2025. The cybersecurity requirements of Art. 3(3)(d)(e)(f) are mandatory regardless of whether harmonised standards have been published. Article 17(4) provides the conformity assessment route when no harmonised standards are available. National authorities are not waiting for standards to begin inspections.

Documentation and implementation: two layers

● LAYER 1 — What REDCheck does

Art. 3(3) cybersecurity documentation

8 structured PDF documents per product. Network protection, privacy safeguards, fraud protection assessments, technical documentation, Declaration of Conformity, CE marking guidance. Generated by the member in 20 minutes from their product data. Article-by-article traceability to Directive 2014/53/EU and Delegated Regulation (EU) 2022/30.

∅ LAYER 2 — What REDCheck does not do

Product security implementation and radio testing

Radio frequency testing, encryption implementation, firmware security hardening, penetration testing, protocol analysis, product certification. These are implementation-level services. REDCheck documents the cybersecurity posture — it does not create it.

REDCheck structures and documents. The association coordinates and distributes. The member implements. The three layers complement each other.

What your members face without documentation

These are the consequences under Directive 2014/53/EU. This is the argument when the board asks whether Art. 3(3) documentation is a priority for the association.

🇪🇺
Product withdrawal or recall by market surveillance
Market access blocked

Article 40 of Directive 2014/53/EU. Market surveillance authorities can require corrective measures, withdrawal from the market, or product recall if cybersecurity documentation is insufficient.

🇪🇺
Prohibition of market availability for formal non-compliance
Sales suspended EU-wide

Article 43. Covers failure to produce technical documentation (Annex V), missing or incorrect EU Declaration of Conformity, and non-compliant CE marking.

🇪🇺
National penalties including criminal sanctions
Effective, proportionate, dissuasive

Article 46. Member States impose penalties for infringement of the Directive, which may include criminal penalties for serious infringements. National authorities have begun issuing reminders that Art. 3(3)(d)(e)(f) is in force.

The members face these consequences individually. The association offers the solution collectively.

Alternatives for documenting 70 member products

OptionCost for 70 productsTotal timeOutput quality
Each member drafts manuallyProfessional time × members560+ hours (distributed)Variable — most SMEs lack template
Each member hires a consultant€28,000–€84,000 (across members)Depends on providerHigh, but individually expensive
Association negotiates group rate with consultant€20,000–€50,000Weeks to coordinateHigh, requires data sharing
REDCheck Professional Pack€999 (one-time)~23 hours totalStructured, Art. 3(3), article-by-article

What REDCheck guarantees and what it does not

REDCheck generates a structured documentation package according to Article 3(3)(d), (e), and (f) of Directive 2014/53/EU and Delegated Regulation (EU) 2022/30 from the information that the user enters. The truthfulness, accuracy and completeness of that information is the responsibility of the manufacturer — the member company entering data.

We guarantee that the document structure follows Article 3(3) of Directive 2014/53/EU, Annex V for technical documentation, and Annex VI for the Declaration of Conformity, and that the legal references cited are correct as of the latest verification date. We do not guarantee that a specific document will be accepted by a market surveillance authority in a specific case.

REDCheck is not legal advice. For specific situations, consult a lawyer or specialised regulatory consultancy.

Frequently asked questions — professional pack

How do the 70 licenses work?
Each license is activated with a unique code and is associated with one specific product and manufacturer. One license equals one Art. 3(3) cybersecurity technical documentation dossier. The 70 licenses are used independently. They do not expire as a block — each one has its own 30-day editing window from its individual first activation.
Can I request a refund?
The pack is a digital product governed by Article 16(m) of Directive (EU) 2011/83 on consumer rights. By activating the first license and expressly confirming PDF generation, the buyer consents to the downloadable digital content nature of the product and waives the right of withdrawal. Refunds are accepted only for reproducible technical failures (generator error, PDF that does not download, verifiable bug) within 14 calendar days of purchase.
What if the regulation changes?
Unused licenses will generate the dossier using the updated version of the generator at no additional cost. REDCheck is updated within 48 hours of any regulatory change published in the Official Journal of the European Union.
Do I need legal expertise to use the tool?
No. The generator guides step by step with references to each article of Directive 2014/53/EU and Delegated Regulation (EU) 2022/30. The member enters the product data — manufacturer details, product description, connectivity type, security features, data processing capabilities. The tool structures the dossier according to Article 3(3)(d), (e), and (f) and Annex V. It does not replace legal advice but reduces documentation time from hours to minutes.
Can different member companies use the licenses independently?
Yes. The association purchases the pack and distributes license codes to member companies. Each code is independent — the member activates it, enters their product data, and generates the dossier in their own browser. The association does not need to centralise production or handle product data. Members can use licenses at their own pace, and each license has its own 30-day editing window from its individual first activation.
Does the tool work for the range of products our members manufacture — sensors, lighting, smart home devices, industrial IoT?
Yes. REDCheck generates Art. 3(3) cybersecurity documentation for any internet-connected radio equipment that falls under Delegated Regulation (EU) 2022/30 — regardless of category. The guided form adapts to the product's connectivity type (WiFi, Bluetooth, Zigbee, LoRa, cellular), data processing capabilities, and applicable Art. 3(3) requirements. A smart thermostat, an industrial sensor, a connected LED controller, and a Bluetooth speaker all follow the same regulatory structure under Art. 3(3)(d), (e), and (f).

Official legal sources

Directive 2014/53/EU — Radio Equipment Directive (EUR-Lex) Commission Delegated Regulation (EU) 2022/30 — Cybersecurity requirements for radio equipment (EUR-Lex)
⚠️ Important notice: REDCheck is a self-assessment documentation tool, not legal advice and not a third-party audit. The documents are generated from your input data. You are responsible for the accuracy of the data you provide. REDCheck does not replace a qualified professional assessment.

Art. 3(3) cybersecurity requirements are already in force. Your members manufacture connected products. The question is whether the association offers a practical documentation solution — or each SME faces the problem alone.

70 licenses. 8 PDF documents per product. Art. 3(3)(d)(e)(f) structure. Browser-side. One payment.

€999 one-time
70 dossiers · ~€14.27 per member product · One payment · Directive 2014/53/EU + Del. Reg. (EU) 2022/30
Buy REDCheck Professional Pack — €999

Related

PROFESSIONAL PACK

RED cybersecurity documentation tool for Amazon and marketplace agencies
PROFESSIONAL PACK

Offer RED cybersecurity documentation as a service
INDIVIDUAL LICENSE

REDCheck — single license from €99