SecureMe Devices Request demo

Compliance posture

Built to clear the audit on day one.

Industrial wearables either pass certification or get pulled from the floor. We engineer to clear the audit before the regulator arrives — across India, Gulf, and the global compliance stacks our customers operate inside. Where a certification is targeted but not yet held, we say so.

India

The 2026 enforcement window for OSH&WC Code 2020 is open. Indian industrial deployments require BIS for hardware, MTCTE for cellular, and DPDP-compliant data residency for biometric data.

  • BIS

    Bureau of Indian Standards

    Hardware certification — IS 13252 / IS 14971 standards apply to the wearable's electrical safety + EMC. Pursuing for 2026 deployment.

  • MTCTE

    Mandatory Testing & Certification of Telecom Equipment

    Required for any device with cellular radio. Wearable's LTE-M / NB-IoT module is certified at the chipset level; full assembly certification on roadmap.

  • DPDP

    Digital Personal Data Protection Act 2023

    Biometric data (PPG signals) is sensitive personal data under DPDP. India-region data residency option, explicit worker consent at induction, deletion-on-request rails built into the platform.

  • OSH&WC

    Occupational Safety, Health & Working Conditions Code 2020

    Effective enforcement from 2026. Mandates safety committees in factories with 250+ workers, plus continuous monitoring obligations in hazardous-area sectors. SecureMe data is structured to feed compliance reporting directly.

  • Factories Act

    Factories Act 1948 (continuing)

    State-level enforcement of LTI (lost-time-injury) reporting. Audit trails generated by SecureMe map to Form 22-A and equivalent state forms.

Gulf (GCC)

The Gulf industrial market has tighter wearable + radio compliance than India. UAE TRA approval is mandatory for any deployable cellular device; KSA and Qatar require SASO + parallel certifications.

  • TRA UAE

    Telecommunications & Digital Government Regulatory Authority

    UAE radio + telecom equipment approval. Cellular wearables require TRA type approval before commercial deployment. On the active certification roadmap for the Gulf v1 pilot.

  • SASO KSA

    Saudi Standards, Metrology & Quality Organization

    Saudi Arabia conformity assessment. Required for shipping into KSA industrial deployments.

  • TDRA

    Telecommunications & Digital Regulatory Authority (UAE successor body)

    Successor to TRA for some functions; certification overlaps with TRA UAE listings.

  • GCC EHS

    GCC member-state EHS frameworks

    Saudi HCIS, UAE Federal Authority for Industrial & Advanced Tech (FAIAT), Qatar GORD — each has its own occupational safety code. SecureMe's audit trails are designed to be portable across these frameworks.

Global

Global certifications are not blocking for India + Gulf deployment but are pursued to keep the platform exportable across other geographies.

  • FCC

    Federal Communications Commission (US)

    US radio + EMC certification. Not blocking for current pilots; on the roadmap to keep US exports possible.

  • CE

    Conformité Européenne (EU)

    European market access. RED Directive (Radio Equipment Directive) + EMC + Low Voltage Directive. On roadmap.

  • RoHS

    Restriction of Hazardous Substances

    Component-level certification. Already a procurement constraint for our COTS sensor selections — wearable BoM is RoHS-compliant.

  • ISO 27001

    Information Security Management Systems

    Cloud + supervisor-dashboard data flows are designed against ISO 27001 controls. Formal certification track started; not yet certified — track only.

Honest framing

Targets reflect engineering intent + active certification roadmap.

We don't claim certifications we don't hold. The platform's architecture has been designed against each of the standards above — that's engineering intent. Where certification is live and granted, we'll provide the certificate number. Where it's targeted, we'll tell you the projected date. Specific batches, units, and serial-number-level certificates are available on request as part of the procurement conversation.

For DPDP and equivalent privacy frameworks: worker consent at induction is a hard requirement, not a checkbox. The platform won't activate vitals capture on a wearable until consent is recorded against that worker's onboarding flow. India-region data residency is the default for Indian pilots; Gulf-region is default for Gulf customers.

Need a compliance pack for your safety committee?

We provide a compliance bundle for evaluation: which certifications are live, which are pending, applicable test reports, data-residency options, DPDP-consent flows, and audit-trail samples. Sent inside 48 hours of request.

Request the compliance pack See platform architecture