Frequently Asked Questions

A Digital Product Passport (DPP) is a legally mandated, structured data registry that collects circularity, environmental sustainability, and regulatory compliance data of a product throughout its entire supply chain lifecycle. It is accessible via physical data carriers (like QR codes or RFID tags) and resolvable as standard, machine-readable semantic payloads (W3C JSON-LD).

Under Regulation (EU) 2023/1542 (EU Battery Regulation), all batteries placed on the European market (EV, LMT, and industrial >2 kWh) must possess a mandatory Battery Passport by February 18, 2027. Under the ESPR 2024/1781 priority plan, the European Commission is currently finalizing delegated acts for Textiles, Iron & Steel, and Aluminum to commence enforcement in 2026/2027, followed rapidly by Electronics & ICT.

As a manufacturer, importer, or authorized B2B representative, you are legally responsible for:

1. Generating Unique Identifiers for each individual product model (UPI) and production facility (UFI).
2. Registering and hosting the passport data on high-availability, decentralized servers.
3. Encrypting and signing the passports with eIDAS-compliant electronic seals to prevent tampering.
4. Syncing EORI and UPI registry data with the central European Commission Database.

Yes, completely. Aligning with standard EN 18239, OpenDPP implements strict Role-Based Access Control (RBAC). General sustainability data (carbon footprint, recycling sorting guides, country of origin) remains publicly readable. However, critical corporate intellectual properties—such as complete sub-tier supplier lists, specific material cost percentages, processing chemical recipes, and physical EUDR plot/UFLPA document attachments—are segregated and strictly restricted to authorized customs inspectors or professional dismantling/recycling agents.

No. To prevent "digital islands" and "digital death", the joint technical standards framework under EN 18221 (Data Storage, Archiving, & Persistence) legally mandates that passport records remain active and resolvable for a minimum of 10 to 15 years after a product has been placed on the market, even if the original economic operator goes bankrupt or terminates operations. OpenDPP supports automated decentralized archival configurations (escrow nodes and decentralized storage mirroring) to guarantee data persistence.

Under EN 18246 specs, all passport data is structured inside Electronically Signed Data Constructs (ESDC). When a tenant node publishes a passport, OpenDPP uses the brand's secure database eIDAS prime256v1 private keys to sign the JSON-LD payload. This generates a cryptographic digital signature seal. Border officials use the matching public key to audit the signature, proving that the passport has not been altered or tampered with since creation.

A GS1 Digital Link is a standard format that translates a physical barcode scan into a standard web URL. Instead of separate labels for QR codes, recycling details, and brand marketing, a single GS1 Digital Link QR code (e.g., https://domain/01/GTIN/21/Serial) is printed. When scanned by a consumer or auditor, the resolver gateway redirects the request to the rich digital product passport HTML page or serves structured JSON-LD data to API integrations.

OpenDPP provides pre-formatted compliance CSV spreadsheets for the major ESPR sectors (Textiles, Batteries, and Electronics). Compliance managers download the spreadsheet, populate it with their raw product and material attributes, and upload it via the Client Console dashboard. The server-side ingestion engine parses the CSV in real-time, executing strict legislative checks (validating fiber ratios, positive capacity ratings, ISO country formats), and instantly generates signed, compliant passports.

Brands register their corporate name, registry IDs (EORI or National business ID), and choose a self-service compliance tier (Starter, Growth, or Enterprise). Upon submitting, the system redirects to our integrated Stripe billing checkout. Successful payments trigger automated Stripe webhooks that provision their dedicated database tenant space, generate active eIDAS prime256v1 key pairs, and seed their initial scoped API keys.

OpenDPP is a commercial, proprietary B2B compliance core dedicated to providing premium, high-performance compliance nodes and GS1 resolvers under a subscription-based SaaS model. While we advocate aggressively for open interoperability and standard W3C schemas, the codebase is unlicensed for public distribution, ensuring your supply chain software partner remains well-funded and structurally secure.

The Asset Administration Shell (AAS v3.0) is the standardized digital twin framework defined for industrial interoperability. OpenDPP provides full support for the AAS metamodel. Brands can ingest raw AAS JSON Environment documents or export their product passports as standard shells, mapping local fields to global **eCl@ss** or IEC semantic registry dictionary identifiers.

The UN Transparency Protocol (UNTP) standardizes verifiable credentials for tracking physical materials and custody transfers along the supply chain. OpenDPP ingests and validates UNTP events (conforming to GS1 EPCIS 2.0) signed as W3C Verifiable Credentials. The system resolves public keys and validates secure **eIDAS x5c certificate chains** embedded in the VC proof envelope.

Yes. When traceability events are registered, OpenDPP walks the Directed Acyclic Graph (DAG) pedigree upstream recursively. The validation engine performs real-time **deforestation audits** matching farm coordinate polygons (under EUDR rules) and audits **region blacklists** (under UFLPA rules) to prevent non-compliant materials from being ingested.