EN 303 645 is a European standard for consumer Internet of Things (IoT) devices, providing a set of cybersecurity and data protection requirements. This standard was developed by the European Telecommunications Standards Institute (ETSI) to enhance the security of home devices connected to the network, such as smart cameras, smart bulbs, smart sockets, etc. However, this standard was ultimately not adopted as a RED harmonized standard and is currently used as an industry-recommended standard. The EN 303 645 standard includes a series of technical and policy requirements aimed at protecting consumer privacy and security, preventing devices from being compromised by malware, and ensuring the security of data transmission. These requirements include but are not limited to: ensuring that the device's software can be securely updated. Encryption technology should be used when storing data. Devices should not contain any known vulnerabilities. The default password of the device must be unique, and users are encouraged to change the password. Devices and services should minimize the collection and processing of personal data. The implementation of the EN 303 645 standard is intended to increase consumer confidence, ensuring they can safely use various smart devices, while also helping manufacturers enhance their product's market competitiveness. With the proliferation of IoT devices in homes and businesses, this standard is seen as an important step in ensuring cybersecurity and data protection.