Statement Of Compliance Workflow decisions under UK PSTI Product Security should be written in operational language: who is in scope, what must happen, what evidence proves it, and when escalation is needed.
Use this guide to turn official requirements into scope, evidence, owner, and review decisions. This guidance is practical, source-linked, and should be validated against current legal and policy requirements before implementation.
Structured answer sets in this page tree.
Cited legal and guidance references.
This page helps you determine which UK PSTI Product Security duties apply, who owns each action, required evidence, and the review path for escalation decisions. A Statement of Compliance is the document that must accompany a relevant connectable product, and the manufacturer must produce it while importers and distributors make sure the product is not supplied without it.
Run the workflow as PSTI product triage: scope the product, classify the role, verify the three security requirements, approve the statement, and prepare OPSS-response evidence. The Statement of Compliance is the document that must accompany the product, and the manufacturer must include the information in schedule 4 while importers and distributors check that the product is not made available without it.
A useful workflow captures product identifiers, manufacturer, importer or distributor role, security requirement evidence, support-period wording, statement approver, supply-chain checks, and review trigger.
Review the workflow after firmware changes, supplier changes, product bundling changes, UK market placement changes, vulnerability reports, OPSS notices, or support-period updates.
Use this UK PSTI Product Security guide to turn Statement Of Compliance Workflow into owners, evidence requests, review checkpoints, and reusable operating records inside Sorena.
Turn Statement Of Compliance Workflow into scoped questions, evidence fields, and review tasks.
Use Research Copilot to answer follow-up questions with cited source material.
Review scope, evidence, owners, and the next compliance actions with Sorena.
"The SoC must accompany the product and meets the necessary legal requirements in the PSTI Act 2022 and PSTI Regulations 2023."
"Manufacturers, importers, and distributors have a duty to comply with the obligations in the Act and the security requirements stated in the Regulations 2023."
"security requirements for relevant connectable products"
"security requirements for relevant connectable products"
"Businesses involved in the supply chains of these products need to be compliant with the new legislation from that date."