Interoperability (Data Act)

Interoperability under the Data Act requires that data and services can function across systems and providers. This ensures that you are not locked into a single vendor's ecosystem and can genuinely exercise your rights to data portability and cloud switching.

Back to Dictionary

What is interoperability?

Interoperability is the ability of systems, data and services to work together across platforms and providers. Under the Data Act, interoperability is a central prerequisite for data sharing and data portability to work in practice.

Think of it this way: the right to move your data is only real if the data actually work in the new system. If a manufacturer delivers your machine data in a proprietary format that only their own software can read, you have formally received your data but in reality cannot use them. Interoperability solves that problem.

The Data Act addresses interoperability on multiple levels: data formats, technical interfaces (APIs), cloud services and smart contracts. The purpose is to create a technical foundation that supports the rights the regulation grants to users and organisations.

Requirements in the Data Act

The Data Act places concrete interoperability requirements on different actors:

**Data holders and manufacturers.** Data holders must make data from connected products available in interoperable formats. Data must be usable without dependence on the original manufacturer's proprietary software. This applies both to direct data access and to B2B data sharing.

**Cloud providers.** Providers of cloud, edge and SaaS services must ensure that customers can migrate data and applications to a competing service. This requires functional equivalence and technical compatibility.

**Smart contracts.** The Data Act also places interoperability requirements on smart contracts used to automate data sharing. Smart contracts must be verifiable, function across platforms and comply with open standards.

**Data spaces.** The EU's strategy for pan-European data spaces is built on interoperability. The Data Act creates the regulatory framework to ensure data can flow across sectors and national borders.

Standards and formats

Interoperability requires standardisation. The Data Act empowers the European Commission to adopt harmonised standards and common specifications for:

Data formats: Open, machine-readable formats that can be used across systems. JSON, XML and CSV are examples of formats that already support interoperability.
API specifications: Documented programming interfaces that enable automated data access and export. RESTful APIs with clear specifications are a common approach.
Metadata: Standardised descriptions of data (what they contain, when they were created, which format they use) make it possible to understand and apply data in new contexts.
Security standards: Encryption, authentication and access control must function across systems so that data sharing takes place securely.

European standardisation organisations (CEN, CENELEC, ETSI) play an important role in developing these technical standards. Until harmonised standards are in place, the European Commission may adopt common specifications that organisations must comply with.

Practical implementation

Interoperability is not something you implement overnight. It requires a systematic approach:

**Assess your current state.** How interoperable are your systems today? Do you use open formats and documented APIs, or are your data bound to proprietary systems? A gap analysis gives you an overview.

**Prioritise open standards.** When selecting new systems or updating existing ones, interoperability should be a requirement. This applies to both your own products and the cloud services you use.

**Document your interfaces.** If you are a data holder or cloud provider, you must document your APIs, data formats and export capabilities. Good documentation is a prerequisite for recipients to use your data.

**Integrate with your ISMS.** Interoperability is also about security. When data move between systems, new risks arise. Your information security management system must cover the security aspects of data exchange, including requirements from NIS2 and DORA.

Interoperability is an investment that pays off. Organisations with interoperable systems find it easier to comply with the Data Act, attract customers who value flexibility, and can participate in the pan-European data spaces that the EU is actively promoting.

Frequently Asked Questions about Interoperability (Data Act)

What does interoperability mean under the Data Act?

Interoperability under the Data Act means that data and services must be able to function across different systems, platforms and providers. This requires standardised formats, open interfaces (APIs) and technical compatibility so that data can genuinely be moved and used in new contexts.

Who is responsible for ensuring interoperability?

The responsibility lies with data holders, manufacturers of connected products and providers of data processing services (cloud, SaaS, edge). They must ensure their systems support standardised formats and technical interfaces that enable data exchange across platforms.

What technical requirements does the Data Act place on interoperability?

The Data Act requires open, standardised and machine-readable data formats, documented APIs for data access and export, functional equivalence when switching cloud providers, and technical compatibility enabling data portability without loss of functionality.

What are smart contracts in the Data Act context?

The Data Act places interoperability requirements on smart contracts used to automate data sharing. Smart contracts must comply with certain standards to ensure they function across platforms and can be verified by all parties in a data-sharing agreement.