This notification is in reference to the cyber security of consumer connectable products defined as a 'internet-connectable' product or a 'network-connectable' product made available to consumers in the UK. This relates to the HS Code List of Chapter 84 and 85. In scope products include but are not limited to: - smartphones - connected cameras, TVs and speakers - connected children's toys and baby monitors - connected safety-relevant products such as smoke detectors and door locks - Internet of Things base stations and hubs to which multiple devices connect - wearable connected fitness trackers - outdoor leisure products, such as handheld connected GPS devices that are not wearables - connected home automation and alarm systems - connected appliances, such as washing machines and fridges - smart home assistants Laptops, PCs, medical devices, tablets without a cellular connection, smart charge points, automotive vehicles and smart meters/other smart metering products are out of scope. This list is non-exhaustive and will be developed further via regulations.
Product Security and Telecommunications Infrastructure Bill (72 page(s), in English)
The UK's Product Security and Telecommunications Infrastructure Bill creates a new regulatory scheme to ensure that consumer connectable products are more secure against cyber attacks. Part 1 of this bill mandates that minimum cyber security requirements must be adhered to in relation to consumer connectable products sold in the UK. This bill provides a robust regulatory framework that can adapt and remain effective in the face of rapid technological advancement, the evolving techniques employed by malicious actors, and the broader international regulatory landscape. The UK notified a public consultation for this measure on 24 August 2020 as "Proposal for Cyber Security of Consumer IoT Devices" (G/TBT/N/GBR/36) with a corrigendum (G/TBT/N/GBR/36/Corr1).