IT security: new regulations for networked devices
Devices intended for the Swiss market, such as smartphones, smartwatches and fitness trackers, will have to comply with mandatory new cybersecurity requirements in the wake of new EU and Bakom directives from August 1, 2024.
New Provisions in the Ordinance of the Federal Office of Communications on Telecommunications Installations (VFAV) call for better protection of the privacy of owners of wireless devices. The revision will come into force on September 1, 2022. Manufacturers and developers of wireless devices such as smartphones and smartwatches must apply the new regulations from August 1, 2024 at the latest.
Network protection and privacy
A revision of the provisions in Bakom's Ordinance on Telecommunications Equipment (VFAV) will come into force on September 1, 2022. These state, among other things, that any wireless device connected for communication via the Internet must ensure the protection of personal data. Manufacturers and developers of smart devices, including toys such as baby monitors or wearables, must reduce unauthorized access to personal data "with appropriate measures," according to a statement from the Federal Office of Communications (OFCOM).
In the future, more protective mechanisms will also apply to payment transactions: Smart devices used for electronic payments must have functions that significantly reduce the risk of fraud. This includes tighter control of user authentication. In addition, networked devices must be prevented from interfering with communication networks or disrupting the operation of websites or other services.
With the new provisions of the VFAV, the aim is to comply with Swiss legislation on those of the European Union which will be available from September 30.
Source: Bakom