Home/Services/RED CE Cyber Compliance

RED DA Cyber Compliance Testing for CE Marking

Achieve CE marking for your connected products with expert compliance testing against the harmonised cybersecurity standard EN 18031 under the Radio Equipment Directive Delegated Act (RED DA 2022/30/EU).

What Is EN 18031?

EN 18031 is the harmonised European standard that provides the cybersecurity requirements and evaluation methodology for radio equipment under the Radio Equipment Directive Delegated Act (RED DA 2022/30/EU). It addresses the essential requirements of Article 3.3(d), (e) and (f) relating to network protection, privacy, and fraud prevention.

Since August 2025, manufacturers placing internet-connected radio equipment on the EU market must demonstrate conformity with these cybersecurity provisions. EN 18031 provides a presumption of conformity, making it the most efficient path to CE marking for cybersecurity.

Self-Declaration vs. Notified Body Assessment

Manufacturers have two routes to demonstrate conformity:

Self-Declaration (Module A)

  • The manufacturer performs or commissions the conformity assessment themselves
  • Issues an EU Declaration of Conformity and affixes the CE mark
  • Suitable when harmonised standards cover all applicable essential requirements
  • Requires robust technical documentation and test evidence

Notified Body Assessment (Module B+C)

  • Required when harmonised standards do not fully cover essential requirements, or for higher-risk product categories
  • A Notified Body conducts an EU-type examination (Module B)
  • The manufacturer ensures ongoing conformity of production (Module C)
  • Provides the highest level of assurance to market surveillance authorities

Our EN 18031 Services

Gap Analysis

We review your product design, architecture, and existing security measures against every clause of EN 18031. You receive a detailed gap report identifying non-conformities and remediation guidance ranked by priority.

Compliance Testing

We perform the full evaluation methodology specified in EN 18031, including functional testing, security mechanism verification, documentation review, and evidence gathering for your technical file.

Technical File Preparation

We help you compile the technical documentation required under the RED, including the cybersecurity risk assessment, test reports, and evidence of conformity that must be kept for 10 years.

Notified Body Preparation

If you require a Notified Body assessment, we prepare you for the examination process — pre-testing your product, reviewing your documentation, and addressing potential non-conformities before the formal assessment.

Why Choose Vigilon Cyber for EN 18031?

  • Deep regulatory expertise in RED and EN 18031 series
  • Experience with both self-declaration and Notified Body pathways
  • Clear, actionable reporting with remediation priorities
  • Ongoing support through to successful CE marking
  • Integrated penetration testing and risk assessment capabilities
"EN 18031-1 compliance is not optional — it's the gateway to the European market for connected products. The earlier you start, the smoother the path to CE marking."
Get a Quote for EN 18031 Testing