verified_user Regulatory Compliance

PSTI Statement of Compliance

Product Security and Telecommunications Infrastructure Act 2022 — Schedule 1 Security Requirements for Relevant Connectable Products.

check

Pacewave Pty Ltd, as the manufacturer of the Velocity-MH for the purposes of the Product Security and Telecommunications Infrastructure Act 2022, hereby declares that the product described in Section 1 of this Statement of Compliance has been assessed against the security requirements of Schedule 1 of the Product Security and Telecommunications Infrastructure (Security Requirements for Relevant Connectable Products) Regulations 2023, and meets those requirements.

This statement is prepared by and on behalf of Pacewave Pty Ltd pursuant to Section 9 of the PSTI Act 2022 and Schedule 4 of the PSTI Regulations 2023.

About this regulation

The PSTI Act places obligations on manufacturers, importers, and distributors of consumer connectable products sold in the United Kingdom. Schedule 1 specifies baseline security requirements that apply to all relevant connectable products within the Pacewave product portfolio. Our compliance covers the following mandatory requirements:

  1. Unique or user-defined passwords

    Every Pacewave device ships with a password that is either unique per device or must be defined by the user on first setup. Where unique per-device passwords are generated, Pacewave uses a secure, randomised mechanism that significantly reduces the risk of automated, class-wide attacks against a product type.

  2. Vulnerability disclosure & reporting

    Users and security researchers can report vulnerabilities to Pacewave at cs@pacewave.com.au. All reports are acknowledged within 10 business days with ongoing status updates until resolved. For full details on our responsible disclosure process, reporting guidelines, and how Pacewave handles vulnerabilities, see our Security Advisory page →

  3. Security updates through 30 April 2028

    Pacewave commits to providing security updates for all covered products until at least 30 April 2028. After this date, products that have not been superseded will be reviewed and an updated commitment published. For questions about a specific product's security update status, contact us at cs@pacewave.com.au.

Signatory details

Declaration issued by

Pacewave Pty Ltd

57 677 156 820

286 Maribyrnong Road
Moonee Ponds, Victoria 3041

Australia

15 April 2026

Signed compliance statement

Pacewave PSTI Signed Compliance Statement

This PDF will contain the formal signed statement from an authorised Pacewave representative.

download Download PDF
Security vulnerability reporting

Report a suspected security issue with any Pacewave product. We aim to acknowledge all reports within 10 business days.

Report a vulnerability arrow_forward

Related

Security Advisories Coming soon

Vulnerability bulletins, CVE disclosures, responsible reporting guidelines, and our four-stage handling process.