Policy Briefing — EU Data Governance Act Takes Effect
The European Union's Data Governance Act (Regulation (EU) 2022/868) took effect on June 23, 2022, establishing trusted data intermediaries, new reuse rules for public-sector data, and oversight mechanisms that impact data-sharing platforms and developer platforms operating in the EU.
Executive briefing: The EU Data Governance Act (DGA) entered into force on , starting the countdown to its September 2023 application date. The regulation sets a framework for altruistic data sharing, certified intermediaries, and public data reuse that cloud and API teams must align with when serving EU residents.
Key updates
- Data intermediation services. Providers must register, meet neutrality obligations, and implement technical and organizational measures to separate customer data assets.
- Public-sector data reuse. Member States must create single information points, using APIs and secure processing environments for sensitive datasets.
- Data altruism. Organizations seeking “data altruism organization” status need transparent consent, governance, and security processes.
Implementation guidance
- Inventory EU-facing data marketplaces, developer portals, and analytics services that will require DGA registrations or certification.
- Design access controls and audit trails for secure processing environments that host sensitive public-sector data.
- Update consent management flows and data donation programs to meet transparency and withdrawal obligations.