Requirements
Digital Product Passport requirements
The exact data set is defined per product group by an ESPR delegated act, but every passport is built from the same families of information. Here is what you need to collect, and the parts teams consistently underestimate.
Rule of thumb: a value is not a passport field until it has evidence behind it. "Recycled content: 30%" is a claim; a test report with traceable provenance is what an auditor accepts.
The data families
- Identity — unique product identifier, plus batch- or item-level IDs where required; the responsible operator's legal identity and IDs (EORI / operator ID); manufacturing facility.
- Compliance — declarations of conformity, certificates, test reports and the standards applied.
- Materials & substances — composition, recycled content, and substances of concern (aligned with REACH / SCIP).
- Circularity — durability, reparability, spare-part availability, disassembly and end-of-life information.
- Environmental footprint — carbon footprint and other lifecycle indicators.
Access tiers
Every field carries an access tier. The same passport serves a public view (consumers), a professional view (repairers, recyclers) and an authority view (market surveillance). Your data model has to carry the tier with each field, not bolt it on later.
Identifiers and carriers
The passport resolves from a GS1 Digital Link identifier (typically GTIN-based, serial-aware where item-level granularity is required), carried in a QR or Data Matrix on the product. The identifier and carrier are as much a requirement as the data.
The parts teams underestimate
Most fields live with your suppliers, not you — collecting them at scale is the number-one bottleneck. Evidence must back every claim. Identifiers and carriers are real engineering. And a passport is a living record: suppliers change, certificates expire, and a single regulation update can make hundreds of passports non-compliant overnight. PassPer's AI extraction and supplier portal are built around exactly these bottlenecks.
Frequently asked questions
What data does a Digital Product Passport need?
Identity (unique identifiers, operator IDs), compliance documents, materials and substances of concern, circularity information (durability, repairability, end-of-life) and environmental footprint — the exact set per product group is fixed by an ESPR delegated act.
Do I need a certificate for every claim in a DPP?
In practice, yes. Market surveillance and your customers' auditors expect evidence — a certificate or test report with traceable provenance — behind each claim, not just a stated value.
What are DPP access tiers?
Public, professional and authority. The same passport serves each audience a different slice of the data, enforced at the resolver.
Related
Check your readiness in 2 minutes.
Answer 10 questions and get a personalised DPP readiness report — free, no account.