EU Data Act
Regulation (EU) 2023/2854 (the Data Act) creates the EU horizontal regime for fair access to and use of data. It applies from 12 September 2025. Key levers: Chapter II grants users of connected products and related services a right to access the data they generate and to share that data with third parties of their choice, and imposes data-by-design obligations on manufacturers and data holders. Chapter III governs business-to-business data sharing conditions (FRAND, no abuse of dominance, dispute settlement). Chapter IV prohibits unfair contractual terms unilaterally imposed in B2B data-sharing contracts. Chapter V creates a public-sector exceptional-need access regime for the Commission, the ECB, Union bodies and public sector bodies. Chapter VI imposes the cloud-switching regime on providers of data processing services (cloud + edge): removal of obstacles, contractual terms, gradual withdrawal of switching charges by 12 January 2027, functional equivalence, technical-aspects-of-switching obligations. Chapter VII restricts third-country foreign-court access to non-personal data held in the Union. Chapter VIII sets interoperability essential requirements for data spaces, in-parallel use of data processing services, and smart-contract essential requirements. Chapter IX establishes competent authorities, complaint and remedy rights, and penalties. Chapter X-XI cover the sui generis database-right adjustment (Directive 96/9/EC), model contractual terms, the European Data Innovation Board (EDIB), and the final provisions.
Framework summaries on this platform are AI-assisted interpretations for educational and compliance planning purposes. They do not reproduce or replace the official standards. Refer to the authoritative source for the definitive text. Framework names and trademarks belong to their respective organisations.
Framework Domains (7)
Data Act - B2B Data-Sharing Conditions and Unfair Terms (Ch III-IV)
| Code | Title |
|---|---|
| DA-Art.10_11 | Dispute settlement and technical protection measures (Articles 10-11) |
| DA-Art.12 | Scope of data-holder obligations under sectoral Union law (Article 12) |
| DA-Art.13 | Unfair contractual terms unilaterally imposed (Article 13) |
| DA-Art.8_9 | B2B data-sharing conditions and compensation (Articles 8-9) |
Data Act - B2C/B2B Connected-Product Data Sharing (Ch II)
| Code | Title |
|---|---|
| DA-Art.3 | Obligation to make connected-product data accessible by design (Article 3) |
| DA-Art.4 | User right to access product data (Article 4) |
| DA-Art.5 | User right to share data with third parties (Article 5) |
| DA-Art.6 | Obligations of third-party data recipients (Article 6) |
| DA-Art.7 | Scope of B2C and B2B data sharing obligations (Article 7) |
Data Act - Enforcement, Sui Generis Right and Final Provisions (Ch IX-XI)
| Code | Title |
|---|---|
| DA-Art.37 | Competent authorities and data coordinators (Article 37) |
| DA-Art.38_39_40 | Complaint, judicial remedy and penalties (Articles 38-40) |
| DA-Art.41_42 | Model contractual terms and the European Data Innovation Board (Articles 41-42) |
| DA-Art.43_44 | Sui generis database right and relation with other Union law (Articles 43-44) |
| DA-Art.45_46_47_48_49_50 | Delegation, committee, amendments, evaluation and entry into force (Articles 45-50) |
Data Act - General Provisions (Ch I)
| Code | Title |
|---|---|
| DA-Art.1 | Subject matter and scope (Article 1) |
| DA-Art.2 | Definitions (Article 2) |
Data Act - International Access and Interoperability (Ch VII-VIII)
| Code | Title |
|---|---|
| DA-Art.32 | International governmental access and transfer (Article 32) |
| DA-Art.33_34_35 | Interoperability essential requirements (Articles 33-35) |
| DA-Art.36 | Essential requirements for smart contracts (Article 36) |
Data Act - Public Sector Exceptional-Need Access (Ch V)
| Code | Title |
|---|---|
| DA-Art.14_15_16 | Exceptional-need public-sector access (Articles 14-16) |
| DA-Art.17_18_19 | Requests for data, compliance and PSB obligations (Articles 17-19) |
| DA-Art.20_21_22 | Compensation, research access and cross-border cooperation (Articles 20-22) |
Data Act - Switching Between Data Processing Services (Ch VI)
| Code | Title |
|---|---|
| DA-Art.23_24 | Removing obstacles to switching and technical scope (Articles 23-24) |
| DA-Art.25_26_27 | Contractual terms, information obligation and good-faith cooperation (Articles 25-27) |
| DA-Art.28 | Contractual transparency on international access and transfer (Article 28) |
| DA-Art.29 | Gradual withdrawal of switching charges (Article 29) |
| DA-Art.30_31 | Technical aspects of switching and specific custom-built regime (Articles 30-31) |
Your Compliance Coverage
If you comply with EU Data Act, you already cover:
GDPR
7%
2 controls mapped
Compare →EU Digital Markets Act
4%
1 controls mapped
Compare →EU Cyber Resilience Act
4%
1 controls mapped
Compare →+ 2 more: EU Energy Performance of Buildings Directive (EPBD Recast) - Directive (EU) 2024/1275 (4%), EU Data Governance Act (DGA) (4%)
See all 5 mapped frameworks ↓Maps to 5 other frameworks
Frequently Asked Questions
What is EU Data Act?
EU Data Act is a compliance framework from European Union with 7 domains and 27 controls. Regulation (EU) 2023/2854 (the Data Act) creates the EU horizontal regime for fair access to and use of data. It applies from 12 September 2025. Key levers: Chapter II grants users of connected products and related services a right to access the data they generate and to share that data with third parties of their choice, and imposes data-by-design obligations on manufacturers and data holders. Chapter III governs business-to-business data sharing conditions (FRAND, no abuse of dominance, dispute settlement). Chapter IV prohibits unfair contractual terms unilaterally imposed in B2B data-sharing contracts. Chapter V creates a public-sector exceptional-need access regime for the Commission, the ECB, Union bodies and public sector bodies. Chapter VI imposes the cloud-switching regime on providers of data processing services (cloud + edge): removal of obstacles, contractual terms, gradual withdrawal of switching charges by 12 January 2027, functional equivalence, technical-aspects-of-switching obligations. Chapter VII restricts third-country foreign-court access to non-personal data held in the Union. Chapter VIII sets interoperability essential requirements for data spaces, in-parallel use of data processing services, and smart-contract essential requirements. Chapter IX establishes competent authorities, complaint and remedy rights, and penalties. Chapter X-XI cover the sui generis database-right adjustment (Directive 96/9/EC), model contractual terms, the European Data Innovation Board (EDIB), and the final provisions. It is used by organisations to establish and maintain compliance with industry standards and regulatory requirements.
How many controls does EU Data Act have?
EU Data Act has 27 controls organised across 7 domains. The largest domains are Data Act - B2C/B2B Connected-Product Data Sharing (Ch II) (5 controls), Data Act - Enforcement, Sui Generis Right and Final Provisions (Ch IX-XI) (5 controls), Data Act - Switching Between Data Processing Services (Ch VI) (5 controls). Each control defines specific requirements that organisations must implement to achieve compliance.
What frameworks does EU Data Act map to?
EU Data Act maps to 5 other compliance frameworks. The top mapping partners are GDPR (7% coverage), EU Digital Markets Act (4% coverage), EU Cyber Resilience Act (4% coverage). Use our comparison tool to explore control-level mappings between frameworks.
How do I get started with EU Data Act compliance?
Start your EU Data Act compliance journey by running a self-assessment on our platform to identify your current compliance posture. Our AI advisory can answer specific questions about EU Data Act requirements, and cross-framework mapping helps you leverage existing controls from other frameworks you may already comply with. Create a free account to access all 27 controls and track your progress.
Start Your Compliance Journey
Create a free account to run self-assessments, get AI advisory, and track your compliance progress across 718 frameworks.
Get Started Free →Free forever — no credit card required