On 21 April 2021, the UK Government published its response to last year’s call for views on the cybersecurity of consumer smart devices and announced its intention to introduce new legislation to regulate the security of consumer smart devices, including phones, televisions, speakers, toys, wearables, doorbells and other consumer internet of things (IoT) devices.
The draft legislation is yet to be published but the announced intention is to require businesses involved in the transmission of smart products to consumers to ensure that no insecure smart products are made available to UK consumers.
Businesses that manufacture or import smart devices for, or sell them to, UK consumers should monitor the legislative developments while continuing to be guided, as appropriate, by security standards and relevant guidance such as the UK Government’s Code of Practice for Consumer IoT Security or IoT Security Foundation’s Guidance on Consumer IoT Security.