Compliance and Risk Services

Connected products carry compliance obligations that go well beyond a single certification mark. Cybersecurity legislation, data protection and privacy requirements, radio and electromagnetic compliance, safety directives, and environmental standards all apply, often simultaneously, and they vary by market.

Getting this wrong late in a programme is expensive. Getting it wrong after launch can be worse. We believe compliance and security should be planned from the start of a product programme, not retrofitted once development is complete.

We have a long track record of managing compliance and risk in connected product development, helping clients ensure their products are robust, secure, and safe, while keeping them on schedule and on budget.

Why compliance needs to be planned, not patched

Retrofitting compliance and security after a product is largely built is one of the most expensive mistakes a connected product programme can make. A security architecture decision made in week one is straightforward. The same decision, revisited after development is complete, can mean re-architecting core components, repeating certification testing, and pushing back a launch date that was already committed to partners or customers.

Protect your business and meet legal requirements

Independent validation

Knowing which standards and regulations apply to your product and confirming you meet them is the foundation of a credible compliance position. We assess the regulatory landscape relevant to your product and markets, test compliance against applicable standards, and conduct parametric measurements against power, radio, EMC, and Low Voltage Directive (LVD) requirements.

  • Assessment of applicable standards and regulations
  • Compliance testing against relevant standards
  • Parametric measurements (power, radio, EMC, LVD)
minimum viable product

Check supplier claims and assess their testing

Supplier audit

When your product depends on third-party hardware or components, their compliance claims become your risk. We independently verify supplier claims, evaluate the testing methods they used to reach those claims, and provide comparative reviews to support supplier selection decisions.

  • Verification of supplier compliance claims
  • Evaluation of supplier testing methodology
  • Comparative supplier testing reviews
  • Supplier selection and assessment support
supplier audit - hardware services

Standards compliance impact assessment

Hardware and software change impact assessment

Compliance is not a one-time event. A software update or a hardware revision can change your compliance position, sometimes without anyone realising until an audit or a customer complaint surfaces it. We assess the compliance impact of changes to your software, provide continuous risk assessment as your product evolves, and maintain currency with radio, Bluetooth, and Wi-Fi standards as they are updated.

  • Compliance impact assessment for software changes
  • Continuous risk assessment through the product lifecycle
  • Radio and low-power compliance
  • Bluetooth and Wi-Fi standards compliance
hardware software changes

Ensure you meet regulatory requirements

Regulatory standards and certification

Global compliance for a connected product typically spans multiple, overlapping regulatory frameworks. We help you navigate the requirements that actually apply to your product and target markets, including:

  • CE marking, FCC, and global compliance: the core certification marks required for market access in the EU, US, and other major regions
  • Radio Equipment Directive (RED): EU requirements for radio-equipped devices, including cybersecurity provisions under EN18031
  • R&TTE Directive: legacy EU radio and telecommunications terminal equipment requirements, relevant for products still operating under transitional provisions
  • Low Voltage Directive (LVD) and Safety Directive: electrical safety requirements for devices operating within defined voltage ranges
  • EMC Directive: electromagnetic compatibility requirements to prevent interference with other equipment
  • Eco Directive: environmental design requirements for energy-related products
  • RoHS and REACH: restrictions on hazardous substances and chemical safety requirements for materials and components
Compliance & Risk

Why Consult Red for compliance and risk?

Compliance advice that does not understand how the product was actually built tends to arrive too late or miss the point. Because we also design and build connected products, our compliance and risk assessments are grounded in direct knowledge of how these architectures behave, not just in regulatory text.

We have supported compliance programmes across media, broadband, industrial, and consumer electronics sectors for over 20 years, with our solutions deployed in more than 100 million households worldwide.

What to expect

1

Initial assessment

We start by understanding your product, your target markets, and your current compliance position, often informed by the self-assessment above.

There is no charge for an initial conversation.

2

Scoped engagement

Depending on your needs, this might be a focused supplier audit, a compliance impact assessment ahead of a software release, or a comprehensive review spanning multiple regulatory frameworks ahead of a market launch.

We agree on clear scope and timelines before work begins.

3

Outcome

You receive a clear compliance position: what applies to your product, where you currently stand, what needs to change, and a practical plan for closing any gaps before they become costly.

We are experts in intelligent product design and development

Hardware design and development

Hardware

Video and embedded vision, connectivity (wired, wireless, GSM, LPWA), power management and low-power devices.

Embedded software, embedded systems

Embedded software

Constrained devices, bare-metal through to embedded Linux, RTOS and embedded Android, security implementation.

Cloud

Cloud platforms

Architecture, data and video streaming, serverless and microservices, AWS, Azure and Google Cloud, AI and machine learning.

Don't let compliance become a launch risk

The earlier compliance and security are built into your product programme, the less they cost, in time, budget, and risk. Talk to our team about your specific requirements.