The UK is set to be the first country to introduce specific regulations and consumer protection government smart internet-enabled devices and technologies.
From 29th April 2024, the regulatory regime introduced through the Product Security and Telecommunications Infrastructure Act (PSTI) 2022 and the PSTI Regulations 2023 will take effect, ensuring a range of internet-enabled devices (such as smart phones, games consoles, smart doorbells) meet minimum cyber security standards.
Among the new rules for manufacturers, retailers and importers of affected products include common-sense protections like eliminating universal and easily guessable default passwords, and transparency about how long a product will receive security updates across its lifecycle.
Minister for AI and Intellectual Property Viscount Camrose said:
“In 100 days, UK consumers, and any businesses, buying smart devices like TVs, cameras, kitchen appliances, speakers, and baby monitors will enjoy top-notch protection from cyber threats.
“These game-changing regulations, developed with industry input, make the UK the first country on the planet to set minimum cyber security requirements.
“These regulations mark a significant move towards a more secure digital environment, placing the UK at the forefront of worldwide initiatives to strengthen cyber security for connectable products.”
Businesses involved in the supply chains of internet-enabled smart devices will need to be compliant with this legislative framework from 29th April 2024. Fines in instances of non-compliance could hit £10 million or 4% of a manufacturer’s worldwide revenue – whichever is higher.
GMCA partners with University of Salford to unlock barriers to data sharing 
5.4 million still to file Self Assessment tax returns 
Christmas sales and footfall data reveal mixed outlook for retail sector in 2025