Issue, govern and serve compliant DPPs across SKU portfolios with the only platform engineered around Regulation (EU) 2024/1781 and the EU Battery Regulation 2023/1542.
The Digital Product Passport (DPP) is no longer a forward-looking sustainability concept; it is binding EU law under the Ecodesign for Sustainable Products Regulation (ESPR), Regulation (EU) 2024/1781, in force since 18 July 2024. From 2026 onwards, delegated acts will progressively impose product-specific DPP obligations on manufacturers, importers and distributors placing goods on the EU single market, beginning with batteries (Reg 2023/1542), textiles, electronics, construction products, iron and steel, furniture and tyres. A DPP platform is the operational backbone that turns these legal obligations into a controllable business workflow: it ingests product, supplier and supply-chain data, verifies it against ESPR data carrier and identifier requirements, persists immutable evidence, and serves machine- and human-readable passports through QR, NFC or RFID at the unit, batch or model level. This pillar guide gives B2B compliance, sustainability and IT decision-makers the frameworks, architecture patterns and vendor-selection criteria needed to procure a production-grade DPP solution that scales across product families, languages and jurisdictions.
Regulation (EU) 2024/1781 (ESPR) enters into force on 18 July 2024, repealing Directive 2009/125/EC and establishing the legal basis for product-specific Digital Product Passports across the EU single market.
European Commission adopts the first ESPR Working Plan, prioritising textiles, iron and steel, aluminium, furniture, tyres, mattresses, chemicals and ICT/electronics for delegated acts and DPP obligations.
Article 77 of Regulation (EU) 2023/1542 requires a unique Battery Passport for every LMT, EV and industrial battery >2 kWh placed on the EU market from 18 February 2027 (effective implementation milestones throughout 2026).
First ESPR delegated acts for textiles and consumer electronics expected to enter application, defining product-specific DPP data sets, verification rules and access tiers for economic operators, consumers and authorities.
Revised Construction Products Regulation (CPR) DPP obligations align with ESPR data carrier specifications, requiring construction product manufacturers to issue DPPs interoperable with the ESPR registry.
Additional ESPR delegated acts cover furniture, tyres and detergents; market surveillance authorities scale up risk-based DPP audits and customs interface enforcement at EU borders.
By 2030, the European Commission targets full coverage of priority product groups under ESPR with operational DPPs, integrating with the EU Customs Single Window and the ESPR Digital Product Passport registry.
ESPR is horizontal regulation: it covers virtually every physical product placed on the EU market, with food, feed, medicinal products, living plants, animals and defence equipment as the only categorical exclusions. The Commission Working Plan 2025-2030 prioritises eight initial product groups but the obligation cascades far wider through delegated acts. Apparel and footwear manufacturers must encode fibre composition, microplastic shedding indicators, dyeing chemistry and end-of-life routing. Electronics OEMs face the most complex data load: critical raw material declarations, repairability index, software-update commitments under the Right to Repair directive, and software bill of materials (SBOM). Battery producers and integrators are subject to the parallel Battery Regulation (EU) 2023/1542 with stricter due diligence on cobalt, lithium, natural graphite and nickel. Furniture and mattress manufacturers must declare formaldehyde emissions, FSC/PEFC sourcing and disassembly time. Iron, steel and aluminium producers face embedded carbon disclosures aligned with the Carbon Border Adjustment Mechanism (CBAM). Construction product manufacturers integrate DPPs with Environmental Product Declarations (EPD) and the revised Construction Products Regulation. Tyres, detergents, paints and chemicals each have their own ESPR-aligned data sets emerging through 2027-2030. A credible DPP platform must therefore be product-template driven, with ESPR-aligned schemas that can be extended per delegated act without code changes.
A production-grade DPP platform is never a standalone silo; it is an integration layer that sits across the master data, ERP, PLM and supplier ecosystem of the manufacturer. On the inbound side, product master data flows from PIM solutions such as Akeneo, Salsify, Plytix, Pimcore, inriver or Contentserv, where SKU attributes, marketing copy and digital assets already live. Engineering and bill-of-material data are consumed from PLM and PDM systems including Siemens Teamcenter, PTC Windchill, Dassault 3DEXPERIENCE and Autodesk Vault. Financial, procurement and inventory truth is sourced from ERP backbones such as SAP S/4HANA (via OData and SAP Integration Suite), Oracle NetSuite (via SuiteTalk REST), Microsoft Dynamics 365 (via Dataverse and Power Platform connectors), Infor M3 and Sage X3. Supplier-provided sustainability data, REACH and SCIP declarations are ingested from supply-chain platforms like SupplyShift, Assent, IntegrityNext and EcoVadis. On the outbound side, the DPP platform exposes REST and GraphQL APIs, signed webhooks for downstream event-driven systems, and ESPR-compliant data carrier endpoints (QR/NFC/RFID resolvers) using GS1 Digital Link URI syntax. Identity, access and verifiable credentials follow W3C VC and DID standards, with cryptographic signing (e.g. eIDAS-compliant qualified seals) of every passport version. A robust integration strategy uses an API-first contract with versioned schemas, an event mesh (Kafka, Azure Event Hubs or AWS EventBridge) for change propagation, and an iPaaS layer (MuleSoft, Boomi, Workato) for legacy SAP and Oracle EBS estates that cannot be modernised on the same horizon as the 2027 ESPR deadlines.
Product withdrawal, customs hold under EU Customs Single Window, fines up to 4% of EU turnover under national ESPR transposition acts.
Enforce GS1 Digital Link compliant URIs at issue time; reject DPP creation without validated UPI, GLN and conformity references.
Liability under REACH Article 33, ECHA enforcement, market surveillance withdrawal, downstream brand reputational damage.
Automated bidirectional sync with ECHA SCIP database, supplier attestation workflows with audit trail and version pinning.
Non-conformity finding by national market surveillance authorities; sales blocked in member states where DPP is not served in the official language.
Locale-aware content model, automated translation governance, and language coverage gating on DPP publication workflow.
Loss of legal evidentiary value, potential criminal liability for falsified conformity statements, eIDAS trust framework breach.
Immutable append-only ledger, qualified electronic seals on every version, cryptographic hash anchored externally for non-repudiation.
DPP serving outage breaches Article 9 ESPR availability requirements; loss of historical product evidence creates 10-year liability gap.
Contractual data-portability clauses, ESPR-registry-aligned export formats, escrow of cryptographic keys and runtime artefacts.
A Tier-1 European apparel manufacturer with 240 SKUs across 14 EU markets faced inconsistent fibre, dye and microplastic data scattered across three PIM tenants and a legacy SAP ECC instance, blocking textile ESPR readiness.
DPP platform deployed with Akeneo and SAP S/4HANA connectors, supplier attestation portal for fibre and dye chemistry, and locale-aware QR carrier serving 24 languages.
All 240 SKUs DPP-ready 14 months ahead of the textile delegated act; supplier data completeness rose from 41% to 96%; legal review time per launch reduced from 9 days to under 24 hours.
A mid-market German electronics OEM producing power electronics and industrial controllers needed to issue DPPs covering RoHS, REACH, repairability and SBOM data while operating on Microsoft Dynamics 365 and PTC Windchill.
DPP platform integrated via Dataverse and Windchill REST connectors, with automated SBOM ingestion from CI/CD pipelines, repairability scoring engine and immutable evidence ledger.
Repairability score automation cut compliance staff effort by 71%; first ESPR-aligned passports issued 8 months before the electronics delegated act enters application.
A Spanish battery integrator assembling industrial battery packs >2 kWh required full Article 77 Battery Passport coverage with cobalt and lithium due diligence across a 60-supplier base by 18 February 2027.
Battery Passport template aligned with Reg 2023/1542, supplier due-diligence workflow with EcoVadis and IntegrityNext data ingest, and qualified electronic seal on every passport version.
100% of pack SKUs Battery Passport-compliant 5 months ahead of the regulatory deadline; downstream EV OEM customers accepted DPPs without supplementary documentation.
Recurring questions from compliance, sustainability and IT decision-makers procuring a production-grade DPP platform for the ESPR and Battery Regulation deadlines.
Book a platform briefing →ESPR itself entered into force on 18 July 2024 but does not directly impose DPP obligations on every product. Concrete obligations arrive product group by product group through delegated acts. The first wave (textiles, electronics, iron and steel, furniture, tyres) is expected from 2026 to 2028. The Battery Regulation 2023/1542 imposes the first concrete DPP, the Battery Passport, from 18 February 2027 for batteries >2 kWh. Your earliest concrete deadline depends on the product group you place on the market.
Conceptually yes, legally distinct. The Battery Passport is created under Article 77 of Regulation (EU) 2023/1542 with its own data set and access tiers. ESPR (Reg 2024/1781) provides the horizontal DPP framework that other product groups will follow. The two regimes are technically interoperable: a credible DPP platform handles both with shared identifiers, data carriers and access controls.
Under ESPR Article 9, the economic operator placing the product on the EU market is responsible. That is the manufacturer if established in the EU, the authorised representative, the importer, or the distributor depending on the supply chain. Fulfilment service providers handling cross-border ecommerce can also be in scope. Liability cannot be contractually transferred to a software vendor.
ESPR Annex III foresees QR codes, DataMatrix and other machine-readable carriers including NFC and RFID. The carrier must encode a unique URI resolving to the DPP and must remain readable for the expected lifetime of the product. Battery Passports under Reg 2023/1542 explicitly require a QR carrier on the battery itself.
ESPR does not mandate EU hosting per se, but practical compliance with GDPR Article 44 to 49 on third-country transfers, the NIS2 Directive for critical product groups, and procurement practices of large EU buyers strongly favours EU data residency. Most regulated buyers require EU-hosted infrastructure with SCCs or adequacy decisions for any non-EU processor.
ESPR requires the DPP to be available for the expected lifetime of the product and beyond, to support repair, refurbishment, second-hand trade and end-of-life processing. For most consumer goods that means at least 10 years. For construction products and industrial equipment it can extend to 25 years or more, which has direct implications for vendor selection and data escrow.
The SCIP database is the ECHA repository for substances of very high concern in articles under the Waste Framework Directive. SCIP submissions must be cross-referenced from the DPP wherever applicable. A modern DPP platform performs bidirectional sync with SCIP, so substance disclosures flow into the DPP automatically and notifications stay aligned across both systems.
Self-hosting is technically feasible and several open-source initiatives exist, but ESPR and Battery Regulation compliance require not just software but ongoing regulatory interpretation, data carrier governance, qualified electronic sealing and registry interoperability. Most enterprises adopt a managed DPP platform with strict data-portability and escrow contracts to balance control and operational risk.
ESPR is being aligned with the EU Customs Single Window. From 2028 onwards, customs authorities will be able to query the DPP at import to verify conformity, substance declarations and origin claims. Products without a valid DPP can be held or refused entry. Importers and customs representatives must therefore have programmatic access to DPP retrieval.
ESPR defines tiered access. Consumers see a defined public subset including substance information, repair instructions, energy and durability claims, and disposal guidance. Economic operators see broader information needed for service, repair and resale. Market surveillance and customs see the full data set. A DPP platform must enforce these tiers cryptographically, not just by UI.
The DPP is a living object. Component swaps, repairs, software updates, ownership transfers and end-of-life events each trigger a new version. ESPR requires immutable history: every previous version remains retrievable and signed. A robust platform uses an append-only event-sourced model with cryptographic linking between versions.
It depends on the delegated act. For batteries, individual cells and modules can be in scope. For electronics, key components such as displays and batteries may require their own DPP under repairability rules. Construction product DPPs already cover sub-components. Vendor selection must therefore allow nested or linked DPPs at component level.
ESPR Article 9 requires the DPP to be available for the lifetime of the product. Sustained downtime constitutes non-conformity and exposes the economic operator to fines and product withdrawal orders. Vendor SLAs should target 99.95% or better, with redundant carrier resolvers, geo-replicated storage and contractually defined RTO and RPO.
The DPP feeds product-level data into the corporate disclosures required under the Corporate Sustainability Reporting Directive (CSRD, Directive 2022/2464) and supports due diligence under the Corporate Sustainability Due Diligence Directive (CSDDD, Directive 2024/1760). A DPP platform with strong APIs becomes the system of record for product-level ESG data feeding ESRS E-series indicators.
ESPR applies to placement on the EU market, so pure exports are technically out of scope. In practice, separating SKU data flows by destination market is operationally costly. Most manufacturers issue DPPs for the entire portfolio to maintain a single source of truth and to anticipate non-EU regimes (UK, Switzerland, Japan, California) emerging on similar lines.
GS1 Digital Link is the de facto URI syntax for DPP data carriers, providing a deterministic mapping from a GTIN, batch and serial to the DPP endpoint. GS1 GLNs identify legal entities. ISO/IEC 15459 governs unique identifiers. A platform that does not natively support these standards will struggle to interoperate with retailer, customs and registry systems.
Start with the product group exposed to the earliest delegated act (typically batteries, textiles or electronics). Build a reference implementation covering identifier governance, data ingest, carrier issuance and access tiers. Then scale horizontally through templates, with the DPP platform absorbing schema differences via configuration rather than custom code per product line.
Talk to our regulatory and integration architects. We map your SKU portfolio to ESPR delegated acts, score your readiness, and deliver a DPP rollout plan that closes the 2027 deadlines without disrupting your SAP, Oracle or Dynamics estate.
