PassPer / Resources / DPP requirements
Requirements

Digital Product Passport requirements

The exact data set is defined per product group by an ESPR delegated act, but every passport is built from the same families of information. Here is what you need to collect, and the parts teams consistently underestimate.

Rule of thumb: a value is not a passport field until it has evidence behind it. "Recycled content: 30%" is a claim; a test report with traceable provenance is what an auditor accepts.

The data families

Access tiers

Every field carries an access tier. The same passport serves a public view (consumers), a professional view (repairers, recyclers) and an authority view (market surveillance). Your data model has to carry the tier with each field, not bolt it on later.

Identifiers and carriers

The passport resolves from a GS1 Digital Link identifier (typically GTIN-based, serial-aware where item-level granularity is required), carried in a QR or Data Matrix on the product. The identifier and carrier are as much a requirement as the data.

The parts teams underestimate

Most fields live with your suppliers, not you — collecting them at scale is the number-one bottleneck. Evidence must back every claim. Identifiers and carriers are real engineering. And a passport is a living record: suppliers change, certificates expire, and a single regulation update can make hundreds of passports non-compliant overnight. PassPer's AI extraction and supplier portal are built around exactly these bottlenecks.

Frequently asked questions

What data does a Digital Product Passport need?
Identity (unique identifiers, operator IDs), compliance documents, materials and substances of concern, circularity information (durability, repairability, end-of-life) and environmental footprint — the exact set per product group is fixed by an ESPR delegated act.
Do I need a certificate for every claim in a DPP?
In practice, yes. Market surveillance and your customers' auditors expect evidence — a certificate or test report with traceable provenance — behind each claim, not just a stated value.
What are DPP access tiers?
Public, professional and authority. The same passport serves each audience a different slice of the data, enforced at the resolver.

Related

Check your readiness in 2 minutes.

Answer 10 questions and get a personalised DPP readiness report — free, no account.

Run the readiness check Start free