EU makes identity verification mandatory to register products in the digital product passport registry
Only operators who complete the registry's identity verification can register or modify digital product passports, and verification must be renewed within three years
- — Economic operators placing covered products on the EU market must complete the registry's identity verification — a qualified electronic signature or seal, an eIDAS high-assurance electronic identification means, or an equivalent EU electronic attestation under Regulation (EU) No 910/2014 — to obtain 'verified' status, without which they cannot register or modify digital product passports; verified status lapses when their identification means expire or after three years, whichever is first, and must be renewed to keep registering.
- — Value chain actors acting in the registry (repairers, refurbishers, remanufacturers, recyclers) must complete the same identity verification to gain access and perform their role's permitted actions — unverified actors cannot access the registry, and their verified status is likewise capped at three years before re-verification.
- — Member State governments must appoint and notify to the Commission a single designated national administrator to manage registry access rights for all their competent national and customs authorities by 18 February 2027 — without the appointment, national access-rights management has no central contact point as the Regulation requires.
- — Commission registry operations must implement the specified log-retention schedules (six months for authentication events; five years for administrative and data-exchange actions; the full registration duration for data-modification events), maintain the security, versioning and proof-of-registration functions, run the helpdesk, and deliver the automated 24/7 support tool by February 2029.
- — Economic operators placing covered products on the EU market
- — Value chain actors acting in the registry (repairers, refurbishers, remanufacturers, recyclers)
- — Member State designated national administrators managing registry access rights
- — Commission registry operations and IT teams
- — Effective: 6 August 2026 — the Regulation enters into force on the twentieth day following its 17 July 2026 publication and applies directly in all Member States.
- — Appointment deadline: 18 February 2027 — Member States must appoint and notify their designated national administrator by this date.
- — Deadline: February 2029 — the Commission must make the automated 24/7 technical support tool available.