Product Security and UK PSTI Information
This page provides information on how to report security vulnerabilities, the minimum security update period for applicable products, and related compliance information under the UK Product Security and Telecommunications Infrastructure (PSTI) regime.
How to Report Security Issues
To report a security vulnerability or other product security issue, please contact:
Toshiba Cybersecurity Team Email: [email protected]
This mailbox is monitored by the Toshiba Cybersecurity Team and is the appropriate channel for vulnerability disclosures and other product security-related inquiries.
Response Timelines
We will acknowledge receipt of vulnerability reports within 5 business days and provide status updates at intervals of no more than 30 calendar days until the issue is resolved or otherwise closed.
Minimum Security Update Period (Defined Support Period)
| Product | First Supply Date | Defined Support Period | Statement of Compliance |
|---|---|---|---|
| TCx M7 Handheld LTE | 30-Apr-2026 | Minimum 6 Years from the first supply date | PDF download |
| TCx M11 mPOS Tablet | 30-Apr-2026 | Minimum 6 Years from the first supply date | PDF download |
| TCx 820 Point of Sale | 30-Apr-2026 | Minimum 6 Years from the first supply date | PDF download |
Statement of Compliance
The PSTI Act’s goal is to ensure that UK consumer connectable products are more secure against cyber attacks. The UK PSTI product security (Cyber) requirements are mandatory from April 29, 2024. All applicable Toshiba products placed on the UK market after this date comply with the new regulation.
- ${title}${badge}