European Data Governance Act (DGA) | Updates, Compliance

What is the European Data Governance Act (DGA)?

The European Data Governance Act facilitates data sharing across sectors and EU countries, in order to leverage the potential of data for the benefit of EU citizens and businesses. It makes many sectors of the economy more efficient and sustainable, and leads to more transparent governance and more efficient public services.

The EU will boost the development of trustworthy data-sharing systems through 4 broad sets of measures:

1. Mechanisms to facilitate the reuse of certain public sector data that cannot be made available as open data. For example, the reuse of health data could advance research to find cures for rare or chronic diseases.

2. Measures to ensure that data intermediaries will function as trustworthy organisers of data sharing or pooling within the common European data spaces.

3. Measures to make it easier for citizens and businesses to make their data available for the benefit of society.

4. Measures to facilitate data sharing, in particular to make it possible for data to be used across sectors and borders, and to enable the right data to be found for the right purpose.

The European Data Governance Act is a key pillar of the "European strategy for data" (European Commission, 19.2.2020). The aim is to create a single European data space, – a single market for data, where personal as well as non-personal data, including sensitive business data, are secure, and businesses also have easy access to an almost infinite amount of high-quality industrial data, boosting growth and creating value, while minimising the human carbon and environmental footprint.

It should be a space where EU law can be enforced effectively, and where all data-driven products and services comply with the relevant norms of the EU’s single market. To this end, the EU should combine fit-for-purpose legislation and governance to ensure availability of data, with investments in standards, tools and infrastructures as well as competences for handling data. This favourable context, promoting incentives and choice, will lead to more data being stored and processed in the EU.

---

Consequences of the EU–US clash over the EU Data Act and Data Governance Act (DGA)

On Tuesday 23 December 2025, the United States Department of State announced the imposition of visa restrictions on five European individuals whom it accused of engaging in actions that allegedly undermined freedom of expression and targeted U.S. based digital platforms. According to the U.S. authorities, the measures were adopted under existing immigration powers allowing the denial of entry to foreign nationals whose conduct is deemed contrary to U.S. foreign policy interests. The State Department stated that the affected individuals had been involved in activities described as efforts to pressure or coerce American technology companies into suppressing lawful speech.

This is part of a broader policy position of the U.S. administration, which framed the actions as a response to what it characterised as an expanding pattern of foreign regulatory interference in the operation of U.S. based digital services. The U.S. government asserted that certain European regulatory initiatives, including those linked to the European Union’s Digital Services Act, had the practical effect of restricting lawful expression and imposing extraterritorial constraints on American companies.

Among the Europeans whom the U.S. State Department barred from entering the United States, is Thierry Breton, former European Commissioner for Internal Market, responsible during his term for supervising EU digital regulation including the Digital Services Act. He has also been a prominent figure in public discussions about platform regulation.

The imposition of visa restrictions on European officials should not be viewed as an isolated measure. It must be viewed through the lens of the US policy, clearly explained in the announcement on visa restrictions targeting foreign nationals who censor Americans, as we read below:

We read:

"Free speech is among the most cherished rights we enjoy as Americans. This right, legally enshrined in our constitution, has set us apart as a beacon of freedom around the world. Even as we take action to reject censorship at home, we see troubling instances of foreign governments and foreign officials picking up the slack. In some instances, foreign officials have taken flagrant censorship actions against U.S. tech companies and U.S. citizens and residents when they have no authority to do so.

Today, I am announcing a new visa restriction policy that will apply to foreign nationals who are responsible for censorship of protected expression in the United States. It is unacceptable for foreign officials to issue or threaten arrest warrants on U.S. citizens or U.S. residents for social media posts on American platforms while physically present on U.S. soil. It is similarly unacceptable for foreign officials to demand that American tech platforms adopt global content moderation policies or engage in censorship activity that reaches beyond their authority and into the United States. We will not tolerate encroachments upon American sovereignty, especially when such encroachments undermine the exercise of our fundamental right to free speech.

This visa restriction policy is pursuant to Section 212(a)(3)(C) of the Immigration and Nationality Act, which authorizes the Secretary of State to render inadmissible any alien whose entry into the Unites States “would have potentially serious adverse foreign policy consequences for the United States.” Certain family members may also be covered by these restrictions."

On Wednesday, 24 December 2025, the European Commission responded. This took the form of an official statement, reacting to the U.S. decision announced the previous day. In that statement, the European Commission expressed serious concern about the U.S. action and warned that it could take appropriate measures in response if necessary. The Commission characterised the U.S. move as unjustified, and stated that it was assessing the implications carefully.

The European Commission reaffirmed that the individuals targeted by the U.S. visa restrictions had acted within the scope of their professional and institutional responsibilities, and in accordance with European law. It rejected the assertion that their actions amounted to censorship, emphasising instead that the EU’s digital regulatory framework, including the Digital Services Act, is grounded in democratically adopted legislation and aims to ensure transparency, accountability, and the protection of fundamental rights online.

Commission officials underlined that freedom of expression is a core value of the European Union, and stated that EU digital legislation does not authorise political censorship or discrimination against lawful speech. They stressed that the regulation of online platforms falls within the sovereign competence of the European Union and that external pressure or unilateral measures against European officials were unacceptable.

No immediate retaliatory measures were announced.

The statement marked the formal indication that the dispute evolves beyond a political disagreement, into a broader diplomatic escalation.

This U.S. action does not legally change either the Data Act or the Data Governance Act (DGA), but it materially affects their geopolitical interpretation, enforcement climate, and future evolution.

Strategic consequences (opinion, legal intelligence).

EU regulation vs. First Amendment.

The U.S. State Department’s decision to impose visa restrictions on European individuals is extraordinary for several reasons:

a. It is targeted, not symbolic.

b. It frames regulatory conduct as a free speech challenge, not a trade dispute.

c. It explicitly links EU platform regulation with alleged suppression of lawful speech on U.S. based platforms.

The EU’s emerging digital fairness agenda (including the Digital Fairness Act) is described in consumer protection and market regulation terms, targeting dark patterns and addictive design, not speech.

The U.S. political and legal narrative, treats any state driven pressure that changes platform curation, ranking, reach, or removal decisions as regulation of speech, implicating the First Amendment.

EU position: Democratic legitimacy allows regulation of platforms to protect citizens, elections, and societal cohesion.

U.S. position: Any state action that pressures platforms to remove or deprioritize lawful speech undermines constitutional principles.

Why the U.S. reaction was not routed through trade bodies or WTO mechanisms, but through visa restrictions under foreign policy?

The U.S. sees the DSA, the DMA, and the Digital Fairness Act (DFA) that follows, but also the EU Data Act and Data Governance Act (DGA), as we will see below, as strategic interference.

From a U.S. constitutional and strategic perspective, the EU digital regulation:

a. Shapes speech outcomes on U.S. based platforms.

b. Imposes normative European policy on global platforms.

c. Creates extraterritorial compliance pressure via fines and access restrictions.

d. Blurs the line between content moderation and state sponsored narrative control.

This explains why the U.S. reaction was not routed through trade bodies or WTO mechanisms.

The use of individual sanctions indicates a move toward personal deterrence, and a message to regulators worldwide that they may face personal consequences. This is highly unusual in transatlantic relations, and highly suggests the U.S. sees certain regulatory actions as equivalent to state backed coercive influence operations.

In Moody v. NetChoice, LLC (U.S. Supreme Court, 2024), the Supreme Court made one point unmistakably clear: Content moderation, ranking, and curation can constitute expressive activity protected by the First Amendment.

It is clear that the U.S. Supreme Court has constitutionalized the idea that algorithmic curation and moderation are expressive acts protected by the First Amendment. It means that when the EU regulates digital platforms, U.S. actors can credibly argue that such rules compel or restrict speech, even if the EU frames them as consumer protection or competition law.

This is why the DSA, DMA, and the Digital Fairness Act, though not about speech in the European legal taxonomy, can be reframed in the U.S. as speech regulation.

From a geopolitical and regulatory standpoint, the U.S. constitutional frame treats platform governance as a civil liberties matter. Moody v. NetChoice strengthens the U.S. position that regulatory pressure on platform design implicates fundamental rights.

This doctrinal divergence explains why U.S. officials reacted so sharply to EU actions, why individual regulators may now be targeted politically, but also why future disputes will likely escalate beyond trade or data protection forums.

Data Act, Article 4. An example of the different approach between the EU and the U.S.A.

Article 4 covers the rights and obligations of users and data holders with regard to access, use and making available product data and related service data.

In very simple terms, Article 4 provides that users of a connected product or related service have the right to access the data generated by their use of that product or service. Data holders must make such data available to the user, without undue delay, free of charge.

This provision establishes a default entitlement to data access, reversing traditional assumptions that the manufacturer or platform owns the data.

Article 4 alters the balance of power between users and data controllers. It indirectly constrains global business models dominated by U.S. firms, and embeds European regulatory norms into data governance. Providing data access requires architectural changes that affect global systems, not just EU facing operations. The EU is reshaping global digital governance in ways that challenge existing U.S. models.

Data Governance Act, Article 3-5. An example of the different approach between the EU and the U.S.A.

According to Article 5.1 (Conditions for re-use), public sector bodies which are competent under national law to grant or refuse access for the re-use of data shall make publicly available the conditions for allowing such re-use and the procedure to request the re-use.

The Regulation applies only to specific public sector data, but includes:

1. Commercial confidentiality, including business, professional and company secrets.

2. Intellectual property rights of third parties.

From a U.S. perspective, this normalises state mediated data access mechanisms, and public sector involvement in access decisions. It frames data reuse as a governance matter, not a purely contractual one, and embeds this approach in binding EU law.

DISCLAIMER: The analysis presented here is provided for informational and educational purposes only. It does not express support for, or opposition to, any government, regulatory authority, political position, or policy approach. The objective is to assist risk, compliance, legal, and governance professionals in understanding evolving regulatory, legal, and geopolitical developments that may affect their professional responsibilities.

This content is intended to facilitate informed decision making by highlighting structural trends, regulatory interactions, and potential areas of operational impact. It does not constitute legal advice, policy advocacy, or an endorsement of any particular regulatory framework or political position. The perspectives discussed reflect an analytical assessment of publicly available information, and should be interpreted in the context of risk awareness, compliance preparedness, and strategic foresight only.

---

19 November 2025 - Digital Omnibus Regulation Proposal

In its Communication on implementation and simplification (‘A simpler and faster Europe’), the Commission presented its approach to adapting the Union’s regulatory framework to a more volatile world: a new drive to simplify, clarify and improve the EU acquis, as a key measure to support the EU’s competitiveness.

This vision reflects the broader plan laid out by Commission President von der Leyen in her political guidelines for the 2024-2029 term. As also highlighted in the Draghi and Letta reports, the accumulation of rules has sometimes had an adverse effect on competitiveness.

Fast and visible improvements are needed for people and businesses, through a more cost effective and innovation friendly implementation.

This is a proposal for amending:

1. Regulation (EU) 2016/679 (General Data Protection Regulation).

2. Regulation(EU) 2018/1724 (establishing a single digital gateway to provide access to information, to procedures and to assistance and problem-solving services).

3. Regulation(EU) 2018/1725 (on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data).

4. Regulation(EU) 2023/2854 (Data Act).

5. Directive 2002/58/EC (Directive on privacy and electronic communications).

6. Directive (EU) 2022/2555 (NIS 2 Directive).

7. Directive (EU) 2022/2557 (Critical Entities Resilience Directive (CER)).

and repealing:

8. Regulations (EU) 2018/1807 (on a framework for the free flow of non-personal data in the European Union).

9. Regulation (EU) 2019/1150 (on promoting fairness and transparency for business users of online intermediation services).

10. Regulation(EU) 2022/868 (Data Governance Act).

11. Directive (EU) 2019/1024 (on open data and the re-use of public sector information).

Right from the title the proposal states that it amends a series of existing instruments, including:

Regulation (EU) 2023/2854, the Data Act.

Regulation (EU) 2022/868, the Data Governance Act (DGA).

19 November 2025 - Digital Omnibus Regulation Proposal

---

16 December 2024 - The European Commission asks 10 Member States to comply with the Data Governance Act

The European Commission decided to send a reasoned opinion to Czechia, Germany, Estonia, Greece, Cyprus, Luxembourg, Austria, Poland, Portugal, and Slovenia, as these Member States did not designate the responsible authorities to implement the Data Governance Act, or have failed to prove that the latter are empowered to perform the tasks required by the Act.

---

24 September 2024 - The European Commission released the "Implementing the Data Governance Act – guidance document"

The purpose of this document is to provide practical guidance to stakeholders in implementing the provisions under the Data Governance Act. It not a legally binding document nor does it represent the formal position of the Commission. This is a ‘living’ document which may be updated over time.

24 September 2024 - European Commission, "Implementing the Data Governance Act – guidance document"

---

August 9, 2023 - New logos to identify trusted EU data intermediaries and data altruism organisations

The European Commission introduces common logos to easily identify trusted data intermediation service providers and data altruism organisations in the EU, which will connect data holders, both individuals and companies with data users.

The data intermediation services and data altruism organisations that satisfy the conditions enshrined in the Data Governance Act and opt for the use of the logos, will have to display the logo clearly on every online and offline publication. The use of these logos at EU level will differentiate the recognised trusted services from other services, contributing to transparency in the data market.

The logo for data altruism organisations recognised in the EU must be accompanied by a QR code with a link to the EU public register of recognised data altruism organisations, which will be available as of 24 September 2023.

The logos have been adopted through an Implementing Regulation and will be registered as trademarks, to protect them from improper use. We read:

"The designs for the common logos referred to in Articles 11(9) and 17(2) of Regulation (EU) 2022/868 shall follow the models set out in the Annex to this Regulation."

Data is a powerful resource that can fuel innovation across Europe’s industrial ecosystems. The Data Governance Act will make more data available by increasing trust in data-sharing and tackling technical barriers.

Understanding the European Data Governance Act.

The European Commission has proposed a Regulation on European data governance as part of its data strategy. This new Regulation will play a vital role in ensuring the EU’s leadership in the global data economy.

On 23 February 2022, the European Commission proposed a Regulation on harmonised rules on fair access to and use of data (Data Act). The Data Act is also a key pillar of the European strategy for data. Its main objective is to make Europe a leader in the data economy by harnessing the potential of the ever-increasing amount of industrial data, in order to benefit the European economy and society.

Over the last few years, digital technologies have transformed the economy and society, affecting all sectors of activity and daily life. Data is at the centre of this transformation: data-driven innovation will bring enormous benefits for citizens, for example through improved personalised medicine, new mobility, and its contribution to the European Green Deal.

In its Data Strategy, the Commission described the vision of a common European data space, a Single Market for data in which data could be used irrespective of its physical location of storage in the Union in compliance with applicable law. It also called for the free and safe flow of data with third countries, subject to exceptions and restrictions for public security, public order and other legitimate public policy objectives of the European Union, in line with international obligations.

In order to turn that vision into reality, it proposes to establish domain-specific common European data spaces, as the concrete arrangements in which data sharing and data pooling can happen. As foreseen in that strategy, such common European data spaces can cover areas such as health, mobility, manufacturing, financial services, energy, or agriculture or thematic areas, such as the European green deal or European data spaces for public administration or skills.

Providers of data sharing services (data intermediaries) are expected to play a key role in the data economy, as a tool to facilitate the aggregation and exchange of substantial amounts of relevant data. Data intermediaries offering services that connect the different actors have the potential to contribute to the efficient pooling of data as well as to the facilitation of bilateral data sharing.

Specialised data intermediaries that are independent from both data holders and data users can have a facilitating role in the emergence of new data-driven ecosystems independent from any player with a significant degree of market power. This Regulation should only cover providers of data sharing services that have as a main objective the establishment of a business, a legal and potentially also technical relation between data holders, including data subjects, on the one hand, and potential users on the other hand, and assist both parties in a transaction of data assets between the two. It should only cover services aiming at intermediating between an indefinite number of data holders and data users, excluding data sharing services that are meant to be used by a closed group of data holders and users.

Providers of cloud services should be excluded, as well as service providers that obtain data from data holders, aggregate, enrich or transform the data and licence the use of the resulting data to data users, without establishing a direct relationship between data holders and data users, for example advertisement or data brokers, data consultancies, providers of data products resulting from value added to the data by the service provider.

At the same time, data sharing service providers should be allowed to make adaptations to the data exchanged, to the extent that this improves the usability of the data by the data user, where the data user desires this, such as to convert it into specific formats. In addition, services that focus on the intermediation of content, in particular on copyright-protected content, should not be covered by this Regulation. Data exchange platforms that are exclusively used by one data holder in order to enable the use of data they hold as well as platforms developed in the context of objects and devices connected to the Internet-of-Things that have as their main objective to ensure functionalities of the connected object or device and allow value added services, should not be covered by this Regulation.

According to Article 1, Subject matter and scope:

(1) This Regulation lays down:

(a) conditions for the re-use, within the Union, of certain categories of data held by public sector bodies;

(b) a notification and supervisory framework for the provision of data sharing services;

(c) a framework for voluntary registration of entities which collect and process data made available for altruistic purposes.

(2) This Regulation is without prejudice to specific provisions in other Union legal acts regarding access to or re-use of certain categories of data, or requirements related to processing of personal or non-personal data. Where a sector-specific Union legal act requires public sector bodies, providers of data sharing services or registered entities providing data altruism services to comply with specific additional technical, administrative or organisational requirements, including through an authorisation or certification regime, those provisions of that sector-specific Union legal act shall also apply.

According to Article 11, Conditions for providing data sharing services:

The provision of data sharing services shall be subject to the following conditions:

(1) the provider may not use the data for which it provides services for other purposes than to put them at the disposal of data users and data sharing services shall be placed in a separate legal entity;

(2) the metadata collected from the provision of the data sharing service may be used only for the development of that service;

(3) the provider shall ensure that the procedure for access to its service is fair, transparent and non-discriminatory for both data holders and data users, including as regards prices;

(4) the provider shall facilitate the exchange of the data in the format in which it receives it from the data holder and shall convert the data into specific formats only to enhance interoperability within and across sectors or if requested by the data user or where mandated by Union law or to ensure harmonisation with international or European data standards;

(5) the provider shall have procedures in place to prevent fraudulent or abusive practices in relation to access to data from parties seeking access through their services;

(6) the provider shall ensure a reasonable continuity of provision of its services and, in the case of services which ensure storage of data, shall have sufficient guarantees in place that allow data holders and data users to obtain access to their data in case of insolvency;

(7) the provider shall put in place adequate technical, legal and organisational measures in order to prevent transfer or access to non-personal data that is unlawful under Union law;

(8) the provider shall take measures to ensure a high level of security for the storage and transmission of non-personal data;

(9) the provider shall have procedures in place to ensure compliance with the Union and national rules on competition;

(10) the provider offering services to data subjects shall act in the data subjects’ best interest when facilitating the exercise of their rights, in particular by advising data subjects on potential data uses and standard terms and conditions attached to such uses;

(11) where a provider provides tools for obtaining consent from data subjects or permissions to process data made available by legal persons, it shall specify the jurisdiction or jurisdictions in which the data use is intended to take place.

---

Understanding the European strategy for data.

The creation of sector-specific and domain-specific data spaces has been announced:

1. Common European industrial (manufacturing) data space.

Europe has a strong industrial base, and manufacturing in particular is an area where the generation of and use of data can make a significant difference to the performance and competitiveness of European industry. In order to unleash this potential, the Commission will:

a. Address issues related to the usage rights on co-generated industrial data (IoT data created in industrial settings), as part of a wider Data Act.

b. Gather key players from the manufacturing sector to agree – in a manner compliant with competition rules as well as principles of fair contracts – the conditions under which they would be ready to share their data and how to further boost data generation, notably via smart connected products (Q2 2020 onwards). Where data generated by individuals are concerned, their interests should be fully taken into account in such a process and compliance with data protection rules must be ensured.

2. Common European Green Deal data space.

Europe’s Green Deal has set out the ambitious goal for Europe to become the world's first climate-neutral continent by 2050. The Commission’s Communication clearly underlines the importance of data for achieving this goal. A European green data space can exploit the major potential of data in support of the Green Deal priority actions on climate change, circular economy, zero-pollution, biodiversity, deforestation and compliance assurance.

3. Common European mobility data space.

Transport and mobility are at the forefront of the debate on data sharing, an area where the EU has many assets. This concerns the automotive sector, where connected cars critically depend on data, as well as other transport modes. Digitisation and data in all modes of transport and in logistics will be an essential component of further work on the ‘European Transport System’ and in particular in the upcoming ‘Smart and Sustainable Transport Strategy’ (Q4 2020). This will include actions in all transport sectors as well as for cross-modal data sharing logistics and passengers ecosystems.

4. Common European health data space.

The current regulatory and research models rely on access to health data, including individual level data from patients. Strengthening and extending the use and re-use of health data is critical for innovation in the healthcare sector. It also helps healthcare authorities to take evidence-based decisions to improve the accessibility, effectiveness and sustainability of the healthcare systems. It also contributes to the competitiveness of the EU’s industry. Better access to health data can significantly support the work of regulatory bodies in the healthcare system, the assessment of medical products and demonstration of their safety and efficacy.

Citizens have the right in particular to access and control their personal health data and to request their portability, but implementation of this right is fragmented. Working towards making sure that every citizen has secure access to their Electronic Health Record (EHR) and can ensure the portability of his/her data – within and across borders – will improve access to and quality of care, cost effectiveness of care delivery and contribute to the modernisation of health systems.

Citizens also need to be reassured that, once they have given consent for their data to be shared, the healthcare systems uses such data in an ethical manner and ensure that the given consent can be withdrawn at any time.

Health is an area where the EU can benefit from the data revolution, increasing the quality of healthcare, while decreasing costs. Progress will often depend on the willingness of Member States and healthcare providers to join forces and find ways to use and combine data, in a manner compliant with the GDPR, under which health data merit specific protection. While the GDPR has created a level playing field for the use of health personal data, fragmentation remains within and between Member States and the governance models for accessing data are diverse. The landscape of digital health services remains fragmented, especially when provided cross-border.

5. Common European financial data space.

In the financial sector, EU legislation requires financial institutions to disclose a significant amount of data products, transactions and financial results. Moreover, the revised Payment Services Directive marks an important step towards open banking, where innovative payment services can be offered to consumers and businesses on the basis of the access to their bank account data. Going forward, enhancing data sharing would contribute to stimulating innovation as well as achieving other important policy objectives at EU level.

6. Common European energy data space.

In the energy sector, several Directives establish customer access to and portability of their meter and energy consumption data on a transparent, non-discriminatory basis and in compliance with data protection law. The specific governance frameworks are to be defined at the national level. Legislation also introduced data-sharing obligations for electricity network operators. Regarding cybersecurity, work is ongoing to address energy-specific challenges, notably: real-time requirements, cascading effects and the mix of legacy technologies with smart/state-of-the-art technology.

The availability and cross-sector sharing of data, in a secure and trustworthy manner can facilitate innovative solutions and support the decarbonisation of the energy system. The Commission will address these issues as part of the smart sector integration strategy to be adopted in the second quarter of this year as announced in the Communication on the European Green Deal.

7. Common European agricultural data space.

Data is one key element to enhance the sustainability performance and competitiveness of the agricultural sector. Processing and analysing production data, especially in combination with other data on the supply chain and other types of data, such as earth observation or meteorological data, allows for precise and tailored application of production approaches at farm level. A code of conduct for sharing of agricultural data by contractual agreement was developed in 2018 by EU stakeholders, involving – among others – the farming as well as the machinery sector.

A common data space for agricultural data based on existing approaches towards data sharing could lead to a neutral platform for sharing and pooling agricultural data, including both private and public data. This could support the emergence of an innovative data-driven ecosystem based on fair contractual relations as well as strengthen the capacities for monitoring and implementing common policies and reducing administrative burden for government and beneficiaries. In 2019, Member States have joined forces and signed a declaration of cooperation ‘A smart and sustainable digital future for European agriculture and rural areas’ 67 , which recognises the potential of digital technologies for the agricultural sector and rural areas and supports the setting up of data spaces.

8. Common European data spaces for public administrations.

Public administrations are big producers and also users of data in different areas. The data spaces for public administrations will reflect this. Actions in this areas will focus on law and public procurement data and other areas of public interest such as data use for improving law enforcement in the EU in line with EU law, including the principle of proportionality and data protection rules.

Public procurement data are essential to improve transparency and accountability of public spending, fighting corruption and improving spending quality. Public procurement data is spread over several systems in the Member States, made available in different formats and is not easily possible to use for policy purposes in real-time. In many cases, the data quality needs to be improved.

Similarly, seamless access to and easy reuse of EU and Member State legislation, jurisprudence as well as information on e-justice services is critical not only for the effective application of EU law but also enables innovative ‘legal tech’ applications supporting practitioners (judges, public officials, corporate counsel and lawyers in private practice).

9. Common European skills data space.

The skills of its people are Europe’s strongest asset. In a global race for talent, the European education and training systems and labour markets need to quickly adapt to new and emerging skills needs. This requires high-quality data on qualifications, learning opportunities, jobs and the skill sets of people. Over the past years, the Commission has put in place a range of open standards, reference frameworks and semantic assets to increase data quality and interoperability. As announced in the Digital Education Action Plan, the Commission also developed the Europass Digital Credentials framework to issue credentials to learners in a secure and interoperable digital format.

10. European Open Science Cloud.

In addition to the creation of nine Common European data spaces, work will continue on the European Open Science Cloud, which provides seamless access and reliable re-use of research data to European researchers, innovators, companies and citizens through a trusted and open distributed data environment and related services. The European Open Science Cloud is therefore the basis for a science, research and innovation data space that will bring together data resulting from research and deployment programmes and will be connected and fully articulated with the sectoral data spaces.

---

This website is developed and maintained by Cyber Risk GmbH as part of its professional activities in the fields of risk management and regulatory compliance.

Cyber Risk GmbH specializes in supporting organizations in understanding, navigating, and implementing complex European, U.S., and international risk related regulatory frameworks.

Content is produced and maintained under the professional responsibility of George Lekatis, General Manager of Cyber Risk GmbH, a well known expert in risk management and compliance. He also serves as General Manager of Compliance LLC, a company incorporated in Wilmington, NC, with offices in Washington, DC, providing risk and compliance training in 58 countries.