【Regulatory Monthly Report】Global Vehicle Regulatory Developments – August 2025

Key global vehicle regulatory updates in August 2025 include:

• EU: Commission Delegated Regulation (EU) 2025/1122 published, updating the reference list of UNECE UN Regulations under the General Safety Regulation (EU) 2019/2144, with direct implications for type-approval conformity.
• EU: RED (Radio Equipment Directive) Articles 3.3(d)(e)(f) on cybersecurity became mandatory from August 1, covering resilience, personal data protection, and fraud prevention. This directly impacts in-vehicle wireless modules (T-Box, remote keys, Bluetooth, cellular, charging communication).
• China: On August 13, the State Administration for Market Regulation (SAMR) and MIIT jointly released a draft notice on recall, production conformity supervision, and marketing practices for intelligent connected NEVs, focusing on ADAS naming/marketing compliance, OTA updates, and production consistency.
• Korea: The UN R155 cybersecurity regulation milestone took effect on August 14, applying to new vehicle types, with full fleet applicability from August 14, 2027.
• US / Global Trade: The new reciprocal tariff framework entered into force on August 7, impacting tariff structures for vehicles and parts. In September, the US and EU announced a retrospective tariff reduction from August 1 for EU vehicles/parts, affecting August transactions.
• Korea (EMC/Radio): The Korean RRA published Announcement 2025-50 on July 27, revising EMC standards/testing. August saw accelerated transition across labs and supply chains, relevant to vehicle communication modules.

Regional Breakdown

European Union (EU)

1. (EU) 2025/1122 (August 12)
   This delegated regulation updates the UNECE UN R references incorporated under Regulation (EU) 2019/2144 (General Safety Regulation), covering topics such as AEBS, pedestrian safety, direct vision, and heavy-vehicle EDR. OEMs must ensure type-approval documentation reflects the latest UN R versions to avoid approval delays.
2. RED Articles 3.3(d)(e)(f) Effective (August 1)
   Focus areas:

• 3.3(d): Network resilience
• 3.3(e): Personal data & privacy protection
• 3.3(f): Fraud prevention
  Applies to in-vehicle wireless equipment such as T-Box, remote keys, Bluetooth, cellular modules. Compliance should be aligned with ISO/SAE 21434, UN R155/R156, avoiding duplicate testing.

---

China (CN)

1. Draft Notice on Intelligent Connected NEV Recall, Production Conformity, and Marketing (August 13)
   Key points:

• Naming & Marketing: ADAS/combined driver assistance must not be marketed as “autonomous driving”; exaggerated claims targeted for rectification.
• OTA Updates: Must not alter critical safety features; require filing, traceability, and user notification.
• Production Conformity: Software/configuration variances across batches subject to consistency supervision.
  Recommendation: Establish function naming whitelist, set up OTA compliance packages (risk assessment, rollback, user notification, filing).

2. Automobile Data Cross-Border Transfer Security Guidelines (2025 Draft)
   Focuses on scenarios requiring security assessment (e.g., important data outbound, large-scale personal data export), exemptions (FTZ pilot, vulnerability patching, OTA recall), and clarifies responsibilities. Aligns with China’s Cybersecurity Law, Data Security Law, and PIPL. Companies should maintain data outbound registers + scenario lists for exemption applicability.

---

Korea (KR)

1. UN R155 Cybersecurity Regulation Milestone (August 14)

• From 2025-08-14: Applies to new vehicle types
• From 2027-08-14: Extends to all vehicle types
  Recommendation: Prepare CSMS audit evidence (SBOM, vulnerability management, patch strategy).

2. RRA EMC Standards Update (Announcement 2025-50, July 27)
   Revised EMC standards/testing for radio/communication equipment, enforced from August. Relevant for vehicle connectivity modules and charging communication equipment.

---

United States / Global Trade (US / Global)

The reciprocal tariff framework was implemented from August 7, with CBP issuing guidance by country. Vehicle and parts HS codes affected. In September, the US-EU agreement retroactively reduced tariffs to 15% effective August 1, requiring companies to reconcile August imports and seek duty refunds where applicable.

---

Compliance Checklist (August Key Actions)

• EU Type-Approval Matrix: Update UN R references per (EU) 2025/1122.
• RED Compliance: Align in-vehicle wireless devices with RED 3.3(d)(e)(f); integrate with R155/R156 cybersecurity evidence.
• China ICV Draft Measures:
  • Enforce marketing naming whitelist
  • OTA compliance package (risk assessment, rollback, filing)
  • Production consistency for software/config versions
• Cybersecurity (KR/EU/Global): Integrate UN R155 + ISO/SAE 21434 + RED 3.3 into audits; maintain SBOM and vulnerability management.
• Customs/Tariffs: Review August imports under reciprocal tariff rules; adjust invoices and apply for retroactive refunds for EU goods.