Digital Product Passport - Access rights management, information system security, and business confidentiality; German and English version prEN 18239:2025
Abstract
The scope of this NWIP follows the requirements of module 8 in the standardisation request of the european commission. In Scope: • rules to guarantee IT-security, cybersecurity, and data protection. • attribute-based access rights management • transfer responsibilities, access-rights, and data from one economic operator to another, for example when a DPP will need to be updated to include information related to repair activities performed by a professional repairer • transfer and ongoing update of responsibilities, access-rights, and data protection rules between backup systems operator and economic operator • implementation of security services • responsibilities of economic operators, service providers and backup-system providers for managing the corresponding DPP access rights • The access rights for each information included in the DPP will be product group specific. They will be included in the delegated acts adopted by the Commission pursuant to Article 4 of COM(2022) 142 final. • The public data included in the DPP will not require any access right management. • The access rights should include any mandatory and necessary licensing rules governing items related to data models, data exchange protocols, data processing, and interoperability.
Begin
2025-04-16
WI
JT024007
Planned document number
DIN EN 18239
Project number
04301201
Responsible national committee
NA 043-02-06 GA - DIN/DKE Joint working committee Digital product passport
Responsible european committee
CEN/CLC/JTC 24/WG 3 - Security
draft standard
Digital Product Passport - Access rights management, information system security, and business confidentiality; German and English version prEN 18239:2025
2025-09
Order from DIN Media
