Digital Passport of the Textile Product (DPP): what it is, what it must contain, when it becomes mandatory

The Digital Product Passport — in English Digital Product Passport, DPP — is the digital identity card that every textile product sold in the European Union will have to have. It is accessed through a data carrier applied to the garment (QR code, NFC or RFID tags) and collects, in a structured and standardized format, the data that describes the product throughout its entire life cycle: fiber composition, origin, production processes, durability, repairability, recycled content, potentially hazardous substances, environmental footprint and end-of-life instructions.

It is not a voluntary label. It is not a marketing initiative. It is a Legal Requirement introduced by the Ecodesign Regulation for Sustainable Products (ESPR, Regulation UE 2024/1781), which entered into force on 18 July 2024. For the textile sector, the delegated act that will define its precise technical requirements is expected by the end of 2027, with the first obligations falling on collections placed on the market starting from 2028.

This guide first explains what the DPP is and what it needs to contain — the picture that every brand and supplier needs to know. Then he addresses the problem that almost no one mentions: The difference between recording data and verifying it. That's where real conformity comes into play.

The DPP is not a file format. It is an enforcement mechanism.

The market is communicating DPP as if it were a format problem: a QR to generate, a form to fill in, a database to populate. This reading is convenient and wrong.

The ESPR does not ask companies to Publish data. Asks to publish data verifiable by a market surveillance authority — in Italy, the Ministry of Enterprise and Made in Italy, customs, delegated bodies. A customs inspector scanning a garment in Rotterdam must be able to trace a reliable piece of data, not a supplier's declaration packaged by the brand. Verifiability is the pillar of the system. Everything else is the surrounding infrastructure.

This changes the question a brand needs to ask itself. Not "how do I generate a DPP?" — that many do. But: "does the content of my DPP stand up to scrutiny?"

What a textile DPP must contain: the four data sets

In May 2026, the Commission's Joint Research Centre (JRC) published the first comprehensive specification on the content of the textile DPP: 49 data points organised into four categories, built around Design Options from DO1 to DO4. In operational summary, the passport will have to cover:

1. Identification and traceability. Unique product identifier, category, contact details of the person responsible for placing it on the market, and the chain of custody that connects the finished garment to the origin of the fibers.

2. Composition and materials. Fibers and percentages, recycled material content, presence of potentially hazardous substances (SoCs). This is where the risk of greenwashing is concentrated: every "recycled", "organic", "low-impact" claim becomes a verifiable fact.

3. Sustainability performance. Durability, repairability and recyclability indices — the JRC is working on numerical scores, not self-declared labels. Physical durability, in particular, is measurable with ISO methods already used in industrial quality control: the Durability Index framework submitted to the JRC (Unit B5, Seville) in February 2026 normalizes nine ISO tests — resistance to pilling (ISO 12945-2), abrasion (ISO 12947-2), tensile strength (ISO 13934-1), tear resistance (ISO 13937-2) — on a 200-point scale calibrated on 120 laboratory reports (DOI 10.5281/zenodo.20034567). The environmental and carbon footprint will instead be expressed against the benchmarks of the PEFCR framework.

4. End of life. Maintenance, repair, disassembly and recycling instructions.

The minimum granularity set by the May 2026 JRC specification is Production batch, not the individual leader. Item-level tracking remains optional — for now. But those who know how the controls work know that the batch granularity, applied to declarations of certified content, opens a precise hole. Let's see it.

The problem that supply chain certificates do not solve

Let's take a typical statement: "this collection is 100% recycled cotton certified GRS". The supplier presents a Transaction Certificate (TC) issued under the Global Recycled Standard scheme.

Here's the point that the market doesn't mention: a CT certifies kilograms, over time windows of 90 days. The ESPR asks for statements per product. A certificate stating 10.000 kg of recycled polyester doesn't tell you how many garments those 10.000 kg actually cover. The mathematics of Mass balance — how much certified material actually went into those garments — is not written anywhere in the certificate.

This is a problem of mass budget, not of passport format. And a lot-granularity DPP that inherits a "100% recycled" statement from a TC that covers only a portion of the bulk is not a compliant passport: it is an unsubstantiated statement that wears a QR code.

On March 28, 2026, the Guardia di Finanza of Prato seized 246.860 reels in an operation on supply chain irregularities. When the control reaches the individual physical flow, the aggregated declaration is not enough. Granularity matters because it is exactly the level at which an authority verifies.

Recording data is not verifying it

Here two categories of solutions are separated, which the market treats as one.

Most platforms DPP Record what the supplier declares: takes the certificate, uploads it, links it to the product, generates the QR. It is structured storage. Useful, but it's exactly the level at which the provider could err — in good faith or bad faith — and the mistake goes straight into the passport.

Verification is another thing. Verifying means checking the certificate against the primary source — the schema authentication database, not a cached copy — and calculating whether the mass balance closes. When the audited financial statements do not cover the entire statement, the system must tell the brand how many items The math really substantiates, leaving the decision to the brand. It is to inform, not block: coverage quantified by unit, with the choice remaining with the person responsible for placing it on the market.

Out of a real verification conducted on over 2 million meters of fabric, 44,21% of certified declarations were found to be non-compliant with one control per product. Not because the suppliers were all lying — but because the distance between "certified in kilograms" and "declared per garment" is where the numbers stop closing.

The question to ask any DPP supplier

If you evaluate a DPP platform, only one question separates archiving from verification:

"When a supplier uploads a GRS certificate that attests to less material than the collection declares, what does your system do?"

If the answer is "register it and generate the passport", you are buying storage. If the answer is "calculates coverage per garment, informs the brand of how many units the budget substantiates, and produces a signed trail of which statement was valid at the time of issuance," you're buying verification. The answer will tell you everything you need to know.

Deadlines: what is certain and what is still open

• July 18, 2024 — ESPR (UE 2024/1781) in force. It is the legal framework; Category-specific requirements come with delegated acts.
• May 2026 — first specification JRC on the content of the textile DPP (49 data, 4 categories, minimum batch granularity).
• End of 2027 (expected) — adoption of the Textile Delegated Act, which will set binding requirements, final format and level of granularity.
• From 2028 — first applicable obligations, with transitional periods (a delegated act does not enter into force until 18 months after its publication).

A correct regulatory method distinguishes between "not yet applied" and "does not exist". The requirements DPP textiles are not yet binding today. But they are timed, and the data practices you adopt now will determine the obligations you will be able to sustain when they become so. Those who structure the verification of their supply chain now turn compliance into competitive advantage. Those who wait for the delegated act will inherit a hasty implementation on data that does not hold up.

Preparation for the DPP does not begin with the publication of the delegated act. Start with the math of your supply chain.

Frequently Asked Questions

When does the textile DPP become mandatory?

The specific delegated act for textiles is expected by the end of 2027; The first obligations will apply to collections placed on the market from 2028, with transitional periods defined in the act itself.

Who is responsible for the DPP of a boss?

The brand or importer placing the product on the EU market is responsible for ensuring that each item has a valid DPP and is accessible via QR code or NFC tags.

What is the minimum granularity required?

The JRC specification of May 2026 sets the production batch as the minimum granularity. Tracking on a per-item basis is now optional, but may become necessary when the declarations concern verifiable certified content by product.

Is a GRS or RCS certificate sufficient for the DPP?

No. A Transaction Certificate attests kilograms over time windows, not capitulations. For a true declaration per product, a mass balance calculation is required that translates the certificate into coverage per unit.