Digital Product Passport··16 min read

DPP Readiness Scorecard: Rate Yourself in 10 Minutes

Featured image for DPP Readiness Scorecard: Rate Yourself in 10 Minutes

DPP Readiness Scorecard: Rate Your Organisation in 10 Minutes

Key Takeaways

  • The average manufacturer scores 7–8 out of 20 on DPP readiness — indicating critical foundational gaps across data structure, serialisation, and supply chain traceability.
  • A score below 12 puts compliance in doubt for the earliest-affected product categories; organisations in this band need immediate, focused action rather than further assessment.
  • Technical infrastructure is rarely the primary bottleneck: product data fragmentation across ERP, PLM, and supplier portals is the root cause in most cases.
  • DPP readiness built correctly is a data infrastructure investment with direct commercial returns — not a compliance cost with no upside.

Most manufacturers believe they have more time than they do.

The EU Digital Product Passport is not a future initiative. The first mandatory requirements — covering batteries — landed in 2027, with textiles, electronics, and construction products following in close sequence (EU Regulation 2023/1542 and ESPR Regulation 2024/1781). If your organisation is waiting for a final delegated act before taking action, you are already behind the organisations that will comply with minimal disruption.

The good news: readiness is measurable. Ten questions. Twenty points. Fifteen minutes of honest self-assessment will tell you exactly where you stand — and what to do before the deadline reaches you.

Key Metric Value
Time to Complete Scorecard 10–15 minutes
Maximum Score 20 points
Score for "Ready to Implement" 14+ (70% readiness)
Average Score Across Industries 7–8 (critical gaps)
Score Improvement in 6 Months 6–10 points typical

Scorecard Vendors & Competitive Landscape

Several platforms offer readiness scoring: Scantrust and Blue Bite focus on authentication-driven identity; Polytag specialises in fabric tracking. BrandedMark integrates the scorecard as a starting point for immediate platform onboarding — converting your readiness assessment directly into a prioritised implementation roadmap without requiring separate engagement cycles.

Work through each question below. Score yourself 0, 1, or 2 based on the criteria provided. Add up your total. Then read your score band for a clear action plan.

The Scorecard

Question 1: Can you identify every product by a unique serial number?

The Digital Product Passport is not issued at the product category level. It is issued at the individual item level. Every single unit your organisation ships needs a unique, persistent identifier — one that links to that unit's specific data record throughout its entire lifecycle.

Score 0 — Products carry batch codes, lot numbers, or model numbers only. No individual unit identifier exists.

Score 1 — Some product lines carry serial numbers, but they are not systematically structured, not linked to a central data system, or coverage is incomplete across your range.

Score 2 — Every unit shipped carries a unique serial identifier, structured to a recognised standard (e.g. GS1 SGTIN), and that identifier links to a queryable data record.

Question 2: Do you hold material composition data in a structured, machine-readable format?

A DPP must declare what a product is made of — not in a PDF buried in a compliance folder, but in structured data that can be queried, verified, and updated. Regulators, recyclers, and downstream supply chain partners need to read this information programmatically.

Score 0 — Material composition exists only in engineering documents, BOM spreadsheets, or supplier declarations that are not queryable.

Score 1 — Material data is captured digitally, but in formats (e.g. unstructured PDFs, proprietary spreadsheets) that cannot be surfaced via an API or linked to individual product identifiers.

Score 2 — Material composition data is structured, machine-readable, linked to product identifiers, and can be exposed via a standards-compliant API endpoint.

Question 3: Do you have carbon footprint data calculated at the per-product level?

Product-level carbon data is a required data attribute under multiple ESPR delegated acts. Sector-average figures or company-level emissions reports will not satisfy the requirement. The DPP needs a product carbon footprint (PCF) calculated to a recognised methodology — ideally per unit, per production batch at minimum.

Score 0 — No PCF data exists. Carbon reporting, if any, is at company or site level only.

Score 1 — Carbon data exists at a product category or model level, calculated using a recognised methodology, but is not yet linked to the DPP data model or to individual unit identifiers.

Score 2 — Per-product carbon footprint data is calculated to a recognised standard (e.g. ISO 14067, GHG Protocol), stored in a structured format, and ready to be surfaced in a DPP record.

Question 4: Have you mapped which ESPR delegated acts apply to your products?

The ESPR framework does not apply uniformly. Different product categories are governed by different delegated acts, each with its own data requirements, timelines, and enforcement dates. Without knowing precisely which acts apply to your products, you cannot build a compliant DPP — you are simply guessing at the scope.

Score 0 — No mapping has been done. The team is aware of ESPR but has not identified which specific delegated acts govern its product categories.

Score 1 — An initial scoping exercise has been completed and the relevant delegated acts have been identified, but the specific data requirements and timelines within those acts have not been fully translated into a compliance workplan.

Score 2 — Relevant delegated acts are identified for all product lines. Required data attributes, compliance timelines, and enforcement dates are mapped and owned by named individuals.

For a detailed breakdown of key dates, see our DPP Compliance Timeline 2026–2030.

Question 5: Do you use GS1-compliant product identifiers?

The EU DPP framework and the ISO/IEC DPP carrier standards both assume globally unique, interoperable product identifiers. GS1 GTINs — and the GS1 Digital Link standard for encoding them in QR codes and other carriers — are the established mechanism. Proprietary internal codes create integration barriers with registries, downstream partners, and compliance platforms.

Score 0 — Products use internal part numbers or proprietary codes only. No GS1 GTIN exists for the product range.

Score 1 — GTINs exist for some or all products, but GS1 Digital Link has not been implemented. QR codes, if present, do not resolve to a GS1 Digital Link resolver.

Score 2 — Products carry GS1 GTINs encoded in GS1 Digital Link-compliant QR codes (or NFC equivalents) that resolve correctly to product data endpoints.

Question 6: Is your product data accessible to end users and supply chain partners via QR code or NFC?

A DPP is not just a backend compliance record. It must be physically accessible — scannable on the product or its packaging by consumers, recyclers, customs authorities, and market surveillance inspectors. The carrier (QR, NFC, RFID, or datamatrix) must be present on the physical item and must resolve to live, current data.

Score 0 — No machine-readable carrier is present on products. Data cannot be accessed by scanning the physical item.

Score 1 — QR codes or NFC tags are present on some products, but they link to static pages (PDFs, marketing sites) rather than a dynamic DPP data record. The links are not GS1 Digital Link compliant.

Score 2 — All products carry a GS1 Digital Link-compliant QR code or NFC carrier that resolves dynamically to current product data, accessible without app download.

Question 7: Can your DPP data persist and remain accessible for 10 or more years?

The DPP regulation requires that passport data remain accessible for the entire lifecycle of the product — including end-of-life processing. For durable goods, this means data infrastructure must remain live and queryable for a decade or more after manufacture. Most internal IT systems, hosted SaaS platforms on short contracts, and company-managed databases present longevity risk.

Score 0 — No specific consideration has been given to long-term data persistence. Current data storage is tied to internal systems with no lifecycle guarantee.

Score 1 — A DPP platform or data infrastructure is under evaluation, but data longevity commitments, contractual guarantees, or archival strategy have not been formalised.

Score 2 — A DPP platform or data architecture is in place with documented longevity commitments (contractual or technical) ensuring data accessibility for 10+ years beyond manufacture date.

For more on what a DPP actually requires, see What Is a Digital Product Passport.

Question 8: Do you have supply chain traceability data for your key materials and components?

The DPP does not stop at your factory gate. It requires evidence of where materials and components came from — partly for sustainability verification, partly for due diligence compliance (CSDDD), and partly because recyclers and repair technicians need to know what they are working with. Tier 1 supplier data is a minimum; critical raw materials require deeper traceability.

Score 0 — Supply chain traceability is limited to direct (Tier 1) suppliers and is held in unstructured documents (contracts, delivery notes). No digital traceability exists for materials or components.

Score 1 — Tier 1 supplier data is captured digitally and some key materials can be traced to source. Critical raw material traceability is in progress but incomplete.

Score 2 — Structured, digital supply chain traceability exists for key components and materials, covering at least Tier 1 and Tier 2 suppliers for critical inputs. Data can be linked to product-level DPP records.

Question 9: Have you selected a DPP platform or technical infrastructure provider?

Organisations that are still evaluating DPP platforms in the months before their compliance deadline will face serious delivery risk. Platform selection, data migration, integration with ERP/PLM systems, and user training all take time. The decision needs to be made — and the implementation started — well ahead of the enforcement date.

Score 0 — No platform evaluation has begun. The organisation has not identified DPP infrastructure as an active procurement requirement.

Score 1 — A platform evaluation is underway. Requirements have been defined, vendors have been assessed, but no selection has been made and no implementation has started.

Score 2 — A DPP platform has been selected. Implementation is underway or complete, with integration to internal systems in progress or live.

For a practical view of what the assessment process looks like, see our DPP Readiness Assessment guide.

Question 10: Can you connect to the EU Digital Product Passport central registry?

The EU Commission is building a central DPP registry — a federated network of data providers and verifiers. Compliant DPPs must be registered and discoverable through this infrastructure. Platforms and data architectures that cannot interface with the EU registry (via the planned ESPR digital infrastructure) will not satisfy the regulation regardless of how good their internal data is.

Score 0 — No awareness of the EU registry architecture or its technical requirements. Current systems have no roadmap for registry connectivity.

Score 1 — The EU registry requirements have been reviewed. The selected or shortlisted platform has acknowledged plans for registry connectivity, but integration has not been tested or confirmed.

Score 2 — The DPP platform in use has confirmed, tested, or roadmapped connectivity with the EU DPP registry infrastructure. Your organisation understands the API and data submission requirements.

For battery-specific requirements — the first product category to go live — see our detailed breakdown in Battery Regulation DPP: What Manufacturers Need to Know.

Add Up Your Score

Total your points across all 10 questions. Maximum score: 20.

Score Interpretation

0–6: Critical — Start Now

Your organisation has significant foundational gaps. At this score, DPP compliance by the relevant deadline is not possible without immediate, focused action. The risk is not just regulatory — it is commercial. Customers in regulated categories will begin asking for DPP data from suppliers before enforcement dates arrive.

What to do:

  • Appoint a DPP programme owner with executive sponsorship this quarter
  • Commission a formal ESPR scoping exercise to identify which delegated acts apply and when
  • Begin a GS1 GTIN registration process if not already in place
  • Initiate a platform evaluation process immediately — implementation timelines are longer than most organisations expect
  • Prioritise your highest-risk product category (highest volume, earliest enforcement date) as a pilot

The gap is closeable. But every month of inaction shortens the runway.

7–12: Developing — Accelerate

You have started the work. Awareness is present and some foundational elements are in place. The risk at this score is underestimating what remains. Many organisations in this band have the easy pieces in place (awareness, GTIN registration, initial scoping) but have not yet tackled the harder problems: structured material data, supply chain traceability, long-term data persistence, and registry connectivity.

What to do:

  • Close the structural data gaps — prioritise getting material composition and carbon data into machine-readable, linked formats
  • Move from platform evaluation to platform selection if you have not already; implementation cannot begin until selection is complete
  • Map the remaining gap against your specific enforcement deadline and build a project plan with milestones
  • Engage your Tier 1 suppliers on traceability requirements — this takes longer than internal workstreams
  • Run a pilot DPP on one product line end-to-end; the lessons from a real implementation will reshape your broader plan

13–17: Advanced — Refine

You are in strong shape relative to the industry. The foundations are in place and implementation is underway. At this score, the work shifts from gap-closing to refinement: data quality, integration depth, user experience, and future-proofing for expanding delegated acts.

What to do:

  • Audit data quality across your DPP records — completeness and accuracy matter as much as having a system
  • Review your carrier implementation (QR codes, NFC) for GS1 Digital Link compliance across all product lines, not just pilots
  • Build internal capability for ongoing DPP maintenance — passports are living records, not one-time documents
  • Begin planning for delegated acts that will affect your product categories in the next 24–36 months
  • Engage with your industry association on sector-specific guidance and registry developments

18–20: Ready — Maintain

Your organisation is in the top tier of DPP readiness. The infrastructure is in place, data is structured and linked, and the path to registry connectivity is clear. At this score, the priority is maintaining readiness as regulations evolve and expanding the capability to new product lines and markets.

What to do:

  • Establish a DPP data governance function responsible for ongoing accuracy and completeness
  • Monitor delegated act developments closely — requirements will expand and data fields will be added
  • Consider the commercial opportunity: DPP data infrastructure is an asset that can drive consumer trust, enable circular economy business models, and differentiate your brand
  • Share learnings with your supply chain — the more your suppliers are DPP-ready, the stronger your own data foundation

What the Score Reveals About Your Organisation

The scorecard is deliberately structured to surface a pattern that appears across nearly every manufacturing organisation tackling DPP readiness: technical infrastructure is not the bottleneck (Gartner Supply Chain Research, 2024).

Most companies that score low on this assessment do not score low because they lack the technology. They score low because product data is fragmented across ERP, PLM, engineering documents, and supplier portals — owned by nobody in particular, structured for internal use rather than external disclosure, and never designed to persist for a decade beyond manufacture.

That is a data governance and organisational problem before it is a technology problem. The platform choice matters. But getting the right people to own the right data — with the right structure, at the right granularity — is what determines whether a DPP programme delivers compliance or simply produces a well-funded box-ticking exercise.

The organisations that will navigate this transition best are the ones that treat DPP readiness as a data infrastructure investment, not a compliance cost. The structured product data you build for DPP compliance has immediate commercial applications: better after-sales experiences, richer customer engagement, faster recall management, and stronger supply chain transparency.

A Note on Timing

The question we hear most often is: "How much time do we have?"

The honest answer is less than most teams assume, and less than it appears on a timeline. Enforcement dates are fixed, but the internal work to get there — data structuring, supplier engagement, platform implementation, registry connectivity — takes 12 to 24 months for most organisations of scale.

If your score is below 12, that runway is already tight for the earliest-affected categories.

BrandedMark is built for manufacturers who need to get this right without building a bespoke compliance infrastructure from scratch. GS1 Digital Link compliance, structured product data, unique serial tracking, and long-term data persistence are built into the platform — not bolted on. If you want to see how your specific product categories map to the DPP requirements, start with a readiness assessment.

Frequently Asked Questions

What's the difference between the Scorecard and the full 25-question Assessment?

The Scorecard is a quick (10-minute) snapshot across 10 critical dimensions — designed for busy executives who need a fast readiness check. The full Assessment (25 questions across 5 domains) is deeper, revealing specific gaps and priorities within each area. Use the Scorecard first for leadership alignment; use the Assessment for detailed implementation planning.

If I score 0–6, should I even bother trying to meet the deadline?

You have a significant gap, but it's still closeable if you start immediately. The most critical actions: (1) appoint a DPP programme owner, (2) map which regulations apply to your products, (3) audit your data position, and (4) begin supplier engagement. These four steps can move you from 0–6 to 7–12 within 8–12 weeks if executed with focus.

Can I improve my score on one question without addressing the others?

While each question is independent, they're interconnected. Improving your identifier infrastructure (Q5) is pointless if your product data is still unstructured (Q2). Prioritise by section: get Sections 1 and 4 solid first, then move to Sections 2 and 3. The order matters for cost and timeline efficiency.

What does a score of 13–17 actually mean for my timeline?

At this level, you have enough in place to be compliant but not comfortable. You're on a credible path if you execute tightly over the next 6–9 months. The risk: underestimating hidden complexity in supply chain data. Most organisations in this band discover mid-implementation that they have more supplier data gaps than they expected. Budget accordingly.

See how BrandedMark handles this

Turn every post-purchase moment into an opportunity to build loyalty and drive revenue.

Join the Waitlist — It's Free

Related articles

Digital Product Passport·14 min read

What Is a Digital Product Passport? The Definitive Guide

Digital Product Passports are changing how physical products are made, sold, and recycled. Here's what they are, what data they require, and how to prepare.

Digital Product Passport·13 min read

Durable Goods DPP: Lessons from Fashion's Head Start

Fashion moved first on Digital Product Passports. Durable goods are next — but the playbook doesn't transfer cleanly. Here's what to adopt and what to rethink.

Digital Product Passport·15 min read

DPP for Toys and Children's Products: Key Facts

EU Digital Product Passport requirements are extending to toys and children's products. Safety data, material composition, and chemical compliance accessible via QR code.

Back to all posts