GO TRACE

Guide · Updated May 2026

What is the Digital Product Passport (DPP)?

A vendor-neutral guide to the EU Digital Product Passport for fashion, apparel, and textiles: what it is, what it must contain, who has to implement it and when, and what brands should be doing today. Built on the ESPR text, the JRC's preparatory work, and the European Commission's published timeline.

~10-minute read · English · No email gate

What is the Digital Product Passport?

The Digital Product Passport (DPP) is a structured set of product-level data that follows a product through its life, accessible from the product itself via a data carrier — most commonly a QR code or NFC tag printed on the label or attached to the article. Anyone with a smartphone — consumer, recycler, repair shop, customs officer, market surveillance authority — can scan the carrier and pull up the information for that specific unit.

The DPP is mandated by the EU Ecodesign for Sustainable Products Regulation (ESPR, Regulation (EU) 2024/1781), which entered into force on 18 July 2024. ESPR sets the framework; the precise data attributes a DPP must carry for each product group are defined by separate delegated acts adopted by the European Commission. Textiles, apparel, and footwear are in the first ESPR working plan; the textile delegated act is in active preparation by the Joint Research Centre.

It is important to be clear about what the DPP is not. It is not a single technology, not a particular vendor's product, not a blockchain. It is a regulatory data discipline. The data carrier is the visible part; what the regulator cares about is the data behind it — that it is accurate, persistent, addressable, and accessible to the right parties at the right level of detail.

What does a DPP for a fashion product contain?

The exact data set for textile DPPs will be fixed only when the textile delegated act is adopted, but ESPR Article 9 already lists the master categories from which any product DPP must draw. For textiles, apparel, and footwear, the working consensus from the JRC's Preparatory Study and the Commission's published methodology points to the following.

Identification
Unique product identifier, unique operator identifier, unique facility identifier where relevant — all in machine-readable form (UPI, UOI, UFI standards).
Composition
Fibre content by mass; presence of substances of concern above declaration thresholds; recycled content percentage, split between pre-consumer and post-consumer, with chain-of-custody verification.
Origin
Country and facility for the key supply-chain stages: spinning, weaving or knitting, dyeing and finishing, cut-make-trim. The French AGEC Law has required a subset of this since 2023.
Environmental footprint
PEF-based indicators per the Apparel and Footwear category rules — likely climate change, water scarcity, and a microfibre release indicator.
Durability and repairability
A durability score under the JRC Preparatory Study's DO1 framework (ISO test-based) and information enabling repair or component replacement.
Recyclability
A recyclability score under the JRC's DO2 framework, with particular attention to elastane content (15% or more elastane currently scores 0 for recyclability).
End-of-life instructions
Sorting and recycling guidance for waste operators downstream.
Compliance documents
References to the EU Declaration of Conformity and applicable test reports.

The DPP must also support tiered access: a consumer scanning a QR sees one view; an authority sees more; a recycler sees only what they need to know to dismantle the article. These categories are stable; the exact format and thresholds will be set by the delegated act.

For the source-by-source breakdown of where each data point comes from, see our editorial The DPP Data Map for Textiles.

Who has to implement it, and when?

The ESPR applies to almost all physical goods placed on the EU market, with limited exceptions (food, medicinal products, military equipment, and a few others). It operates in two layers:

  1. The framework — ESPR itself, in force since 18 July 2024 — establishes the DPP as the disclosure mechanism, sets governance, prohibits the destruction of unsold textiles, and lists 16 product groups for early action.
  2. The delegated acts — adopted product group by product group — fix the specific data attributes, the verification methods, the data carrier format, and the application date for each group.

The first ESPR working plan (Communication COM/2025/187 final, 16 April 2025) confirmed textiles and apparel as a priority group. The Joint Research Centre published its Preparatory Study for textiles in late 2025 and its data methodology in March 2026. The textile delegated act is in active preparation; adoption is expected in the near term, with application most likely from 2027 to 2028.

Other priority groups include iron and steel, aluminium, furniture, tyres, and electronics. Batteries are already covered by their own regulation (Regulation (EU) 2023/1542), which uses the same battery-passport framework. Construction products are covered by the parallel Construction Products Regulation.

The DPP requirement applies to anyone placing a product on the EU market — including non-EU brands. A US-based brand shipping cotton T-shirts into Germany will need a compliant DPP for each unit. Who specifically carries that obligation is the subject of the next section.

For the full timeline narrative, see our From Voluntary to Mandatory: the EU DPP timeline.

Who is responsible for the DPP?

The Responsible Economic Operator (REO) is the entity that legally owns the DPP for a product placed on the EU market. Depending on the business model, the REO may be the manufacturer, the importer, the brand owner, or a fulfilment service provider acting in that role. Where multiple operators are involved — for example, an EU brand sourcing from a non-EU manufacturer through a 3PL — the chain typically resolves to whichever operator places the product on the market under its own name.

A few practical consequences for fashion brands:

  • Legal accountability does not transfer to vendors. Many DPP solution providers, data platforms, and traceability vendors will offer to "manage" a brand's DPP. Their software may be involved at every step, but the regulatory obligation — and the penalties for non-compliance — remain with the REO. A vendor SLA is not a substitute for legal responsibility.
  • The REO is the one that signs the EU Declaration of Conformity. Whoever puts their name on that document is, by that act, the REO for the article.
  • Outsourcing the work does not outsource the duty. Brands relying on a manufacturer or distributor to "handle compliance" need a clear written agreement on who is the declared REO, and what audit trail the REO holds.

For fashion brands selling under their own name in the EU, the REO is, in almost all cases, the brand itself. Working out who is responsible internally — sustainability, sourcing, product, legal, IT — is then a question of governance rather than of regulation.

DPP vs adjacent things: a quick disambiguation

"DPP" gets confused with a lot of adjacent ideas, regulations, and vendor products. The differences matter.

DPP vs CSRD

CSRD (Corporate Sustainability Reporting Directive) is entity-level disclosure: a company publishes one annual sustainability report covering its operations and value chain. DPP is product-level disclosure: each SKU carries its own data record. The two depend on the same upstream supplier data, so traceability work done for one accelerates the other. If you have a CSRD obligation today, DPP-readiness is not a separate workstream — it is the natural product-level extension.

DPP vs CSDDD

CSDDD (Corporate Sustainability Due Diligence Directive) is about process: identify, prevent, and account for adverse impacts in the chain of activities. DPP is about data: disclose specific attributes on each product. CSDDD asks "is your supply chain in order?", DPP asks "what is in this specific product?". Together they raise the bar on both.

DPP vs AGEC

France's AGEC Law (2020) introduced a product-level fiche d'information environnementale for textiles in 2023 covering recycled content, country of fabrication for several supply-chain stages, hazardous substances, and microfibre release. AGEC essentially pre-figured a slice of the DPP for the French market. Brands selling in France have a head start; the AGEC data points map directly onto the expected DPP categories.

DPP vs blockchain traceability platforms

A DPP is a regulatory data record with a defined schema and access rules. A blockchain traceability platform is one possible technology choice for storing or attesting that data. Many DPPs will not use a blockchain at all (centralised databases are explicitly allowed); some will. The regulation is technology-neutral. Beware vendors who conflate the two.

DPP vs the existing 'digital passport' products on the market

Several SaaS vendors have offered "digital product passports" for years — most are QR-code-to-marketing-page products with no relation to the EU regulatory framework. A compliant DPP must meet the data, accessibility, and persistence requirements of the eventual delegated act for its product group. Until the textile delegated act is adopted, no vendor can sell a "fully compliant" textile DPP — anyone claiming otherwise is selling a forecast.

How fashion brands should prepare today

You do not need to wait for the textile delegated act to begin. The data the DPP will require already exists, scattered across your suppliers; the task is to consolidate it.

  1. Map your value chain to Tier 3. At minimum, identify your spinners, weavers or knitters, dyers, and cut-make-trim factories. If you cannot name the Tier 2 facility that dyed a given fabric, you cannot meet the origin attributes the DPP will likely require.
  2. Get a clean Bill of Materials per SKU. Fibre composition by mass, components (zips, buttons, linings, prints, finishes), origin per component. The fibre composition on the care label is the starting point — but the DPP will demand verifiable evidence behind those percentages.
  3. Audit your substances list against REACH Annex XVII and the SVHC list. Substances of concern above declaration thresholds must be flagged. Existing OEKO-TEX STANDARD 100 certifications are useful but do not, by themselves, satisfy the DPP requirement.
  4. Pick a data infrastructure intentionally. A DPP is, in technical terms, a set of accessible records linked to a data carrier. You can build this on a database you already have (PLM, PIM, ERP), on a dedicated DPP platform, on a traceability platform that adds DPP features, or on a combination. There is no single right answer — the question is which fits your team, suppliers, and budget. The free Provider Map is built exactly to help you see who does what across that landscape without any vendor pitching at you.
  5. Train the team that will own it. DPP-readiness is multi-function: product, sourcing, sustainability, legal, IT. Whoever ends up owning it needs to speak the regulatory language fluently. The DPP Masterclass covers the full ground — legal foundations, data architecture, supplier engagement, technology selection — in a vendor-neutral format.

Frequently asked questions

When does the DPP actually become mandatory for textiles?

The framework regulation (ESPR) is already in force. The operative timeline for textiles depends on the textile delegated act. As of May 2026, adoption is expected in the near term, with application most likely from 2027 or 2028. The Commission typically allows an implementation runway of 18 to 36 months after adoption to let brands and suppliers comply.

Will the DPP apply to small fashion brands?

Yes. ESPR applies to almost all physical goods placed on the EU market, with no general SME exemption. The Commission may calibrate specific requirements for SMEs through the delegated acts (simplified data carriers, longer transition periods), but the underlying obligation applies. The mitigation route for very small brands is not exemption; it is operational simplicity — which is one reason the Provider Map surfaces tools that fit smaller teams.

Who is responsible for the DPP?

The legal responsibility sits with the Responsible Economic Operator (REO) — typically the manufacturer, the importer, the brand owner, or a fulfilment service provider placing the product on the EU market under its own name. Software vendors and DPP solution providers may support implementation, but legal accountability remains with the REO. The Who is responsible for the DPP? section above goes into the practical consequences for fashion brands.

Do I need a blockchain for my DPP?

No. The DPP is technology-neutral. A centralised database, a federated record system, and a blockchain are all explicitly permitted infrastructures. Blockchain may suit specific use cases — particularly multi-actor attestation where no single party owns the data — but it is not a regulatory requirement, and many DPPs will be built on conventional databases.

How does the DPP relate to the existing care label?

The DPP will not replace the care label, which is regulated by the EU Textile Labelling Regulation (Regulation (EU) No 1007/2011) and remains in force. The two coexist: the care label carries the legally mandated washing, ironing, and fibre-composition information; the DPP carries the wider data set (origin per supply-chain stage, recycled content, substances of concern, durability, recyclability, environmental footprint, repair instructions, end-of-life guidance).

Can I prepare a DPP today before the delegated act is finalised?

You can prepare for the DPP — the data attributes that will be required are known with high confidence — but you cannot publish a fully compliant DPP yet, because the textile delegated act has not been adopted. What you can do is consolidate the underlying supplier and product data so that, once the act is published, the build is configuration rather than data archaeology. Most of the cost of DPP-readiness sits in the data work, not the technical implementation.

What happens if I sell into the EU without a compliant DPP?

Once the textile DPP is in application, a product placed on the EU market without a compliant DPP will be non-compliant by definition. Enforcement is delegated to market surveillance authorities in each Member State; penalties follow national law but ESPR requires them to be effective, proportionate, and dissuasive. Consequences range from corrective measures and product withdrawals to blocked imports, recalls, and financial penalties — the exact enforcement approach will vary by Member State.

Does the DPP apply to non-EU brands?

Yes. The DPP requirement applies to anyone placing a product on the EU market, including non-EU brands. A US-based brand shipping cotton T-shirts into Germany will need a compliant DPP for each unit. The obligation sits with the responsible economic operator — typically the manufacturer, the EU importer, or the fulfilment service provider.

Go deeper

This guide maps the territory. Three concrete ways to act on it:

DPP Provider Map FREE

Already know which DPP categories your project covers? Find the right providers in 5 minutes. A vendor-neutral, personalised map of who does what across the DPP landscape.

Get my free Provider Map

Master Digital Product Passports

From legal foundations and data architecture to supplier management, technology selection, and implementation planning. The most comprehensive, vendor-neutral DPP training for fashion and textiles.

Explore the masterclass

The DPP Data Map for Textiles

Free 10-page editorial mapping every expected DPP data point to its source in the ESPR text and the JRC's preparatory work. No speculation, no expert opinion, no vendor marketing.

Read the editorial

Sources

Every claim in this guide is sourced. Below, the EU Commission texts and the JRC preparatory work this guide draws from.

  • Regulation (EU) 2024/1781 — ESPR — In force 18 July 2024
  • ESPR Working Plan — COM/2025/187 final — 16 April 2025
  • JRC Preparatory Study on Textiles, 3rd Milestone — December 2025
  • JRC145830 — DPP Data Methodology — 19 March 2026
  • Regulation (EU) No 1007/2011 — Textile Labelling Regulation — In force since 2011
  • Regulation (EU) 2023/1542 — Batteries Regulation (battery passport precedent) — In force 17 August 2023
  • Directive (EU) 2022/2464 — CSRD — First reports published 2025
  • Directive (EU) 2024/1760 — CSDDD — In force 25 July 2024
  • Loi n° 2020-105 — AGEC (France) — Adopted 10 February 2020