Those who have data have power. The Data Act redistributes this power

20 October 2025 | Knowledge, News

The EU Data Act, which came into force in September 2025, represents a breakthrough in the regulation of data access and use. Data generated by devices, ranging from agricultural tractors and industrial machinery to solar panels and transport fleets, is no longer the sole property of manufacturers. Other market participants now have the opportunity to access and use this data to develop new, innovative products and services. The Data Act marks a departure from business models based on data monopolisation, to one requiring data to be shared in accordance with its rules. We are therefore entering a completely new reality.

Data as a shared resource

The Data Act forms part of the EU’s broader digital strategy, which aims to create a data-driven economy.

Unlike the GDPR, which focuses on protecting personal data, the Data Act addresses access to and use of both personal and non-personal data generated by internet-connected devices and related services.

The regulation’s main premise is the balanced distribution of access to data among all those who generate and use it.

Data goes beyond manufacturers

The central element of the Data Act is the strengthening of the position of device users and data recipients, i.e. businesses in practice.

Device users are the owners, renters or lessees of connected products, as well as the recipients of related services.

Data recipients are any companies that users allow to use the data, such as insurers, technology start-ups or agricultural advisors. Based on the collected data, they can develop their own services, applications and analyses, which were previously the sole domain of the manufacturer.

The regulation has introduced three key mechanisms:

Users now have the right to access data generated by the products they use, including vehicles, interactive toys, home appliances, and industrial machinery. This data must be made available default, free of charge, in a structured and machine-readable format
Users may request that their data be transferred to third parties (data recipients) of their choice, which enables them to use independent services such as alternative vehicle repair services
Users are protected against unfair contractual terms – any terms that are imposed unilaterally and deemed unfair will not be binding on small and medium-sized enterprises

Manufacturers lose exclusivity and face new obligations

A data holder can be a manufacturer, service provider, distributor, or platform operator — in other words, anyone who has the right or obligation to use and share data from a product or service.

The Data Act imposes several demanding obligations on them:

Data must be shared with third parties on fair, reasonable and non-discriminatory terms, which excludes favouring one’s own services. Therefore, it is necessary to review standard data agreements and policies to eliminate any clauses that could be considered unfair
Products and services should be designed with data availability in mind, and users should be able to retrieve data by default and without undue delay
The mechanism for public sector bodies to access data in cases of ‘exceptional need’ is particularly important. In emergency situations, or when such bodies are carrying out tasks in the public interest, data holders (including manufacturers) must provide the necessary information without undue delay and cannot invoke trade secrets to withhold it

International dimension

Although the Data Act is an EU regulation, its effects will be felt worldwide.

In fact, companies based outside the EU that offer products or services to EU clients must comply with the new rules. The regulation also contains safeguards against illegal access by foreign governments to data stored in the EU and, like the GDPR, protects personal data exported outside the Union.

Summary

The Data Act marks the next stage in the transformation of data law.

By strengthening the rights to access and share information generated by devices, the regulation aims to unlock economic value that has previously been inaccessible.

For those who store data, this means facing compliance challenges and having to remodel existing business strategies.

For data recipients — essentially all businesses — this opens up opportunities to develop new services and sources of revenue that were previously beyond their reach.

Source: Contact Online

Date: 16.10.2025

Any questions? Contact us

Latest Knowledge

The 2026 CHF Mortgage Loans Act: The Direction of Changes and Their Implications for the Parties to Disputes

The bill of 29 May 2026 concerning Swiss franc mortgage loans could significantly change the way disputes between borrowers and banks are handled. Although at this stage it remains merely a legislative proposal, it is already attracting considerable attention due to the scale of its potential impact and the direction of the proposed solutions.

Banking sector overview | Banking today and tomorrow | June 2026

According to a statement published by GPW Benchmark, the reference rate administrator, and the Polish Financial Supervision Authority (KNF), which oversees the administrator, 31 December 2036 will be the last day on which the WIBID and WIBOR rates will be provided for all key fixing periods: 1 month (1M), 3 months (3M) and 6 months (6M).

How to correctly calculate length of service from 1 May 2026

New rules for calculating length of service have applied to private sector employers since the beginning of May 2026. With companies continuing to express concerns about the new framework, the Ministry of Family, Labour and Social Policy has addressed the most common questions. We look at the issues that are (still) troubling employers and how we can help.

Tax settlement agreement: A new tool in the General Tax Code

A draft bill amending the General Tax Code (No. UDER110) has been submitted for consideration by the Council of Ministers. The bill introduces the tax settlement agreement, a new form of amicable dispute resolution between taxpayers and the tax authority. The draft is open for inter-ministerial review and public consultation until 19 June, with the proposed date of entry into force being 1 January 2028. Below, we examine who may apply for a settlement agreement, when, and on what terms, and how the process may work in practice.

Overhauling the SENT system: from clothing to concrete and internal logistics. How to prepare?

Just a few years ago, SENT (the Electronic Transport Monitoring System) was almost exclusively associated with tanker trucks and the fuel market. This is now a thing of the past. Today, it is an inspection tool that is increasingly being used for shipments of fruit, and, as of mid-March, even containers of clothing and footwear.

A revolutionary reform of Poland’s capital market – ETFs and the Qualified Investment Fund

Poland’s capital market is on the cusp of one of the most significant reforms in recent years, which will fundamentally reshape the regulatory framework for ETFs and introduce an entirely new investment vehicle: the Qualified Investment Fund (QIF/KFI). This is a response to market demands and presents an opportunity for Poland to close the gap with countries such as Luxembourg and Ireland, with the overarching objective of boosting competitiveness and stemming the outflow of investment capital abroad. The new regulations aim to deliver greater flexibility for investors and fund managers alike, while also aligning with current market trends and European standards. We examine what is changing in practice and what it means for all market participants.

Directive 2024/825 – the European Union’s response to greenwashing

Greenwashing poses one of the most significant challenges to the consumer protection framework in the European Union. As customers become increasingly environmentally conscious, brands are ever more inclined to leverage this interest by invoking the language of environmental protection, sustainable development and climate neutrality. Yet these claims do not always reflect the actual characteristics of their products or services. The EU has sought to bring systemic order to this area by clarifying the information obligations of traders and broadening the list of practices deemed unfair. We consider what these changes mean for businesses in practice.

GLI – AI, Machine Learning & Big Data 2026: The Polish perspective on artificial intelligence law

Global Legal Insights (GLI) is a series of international publications by the Global Legal Group (GLG), authored by legal practitioners from around the world. It offers an up-to-date and highly practical guide to the applicable regulatory landscape, complemented by expert commentary on specific areas of law across different jurisdictions. In short: legislation and actionable know-how in one place.

Banking sector overview | Banking today and tomorrow | May 2026

“The end of the dream of free housing” – this is how the Polish Bank Association (Związek Banków Polskich) has characterised Thursday’s judgments of the Court of Justice of the European Union in cases concerning whether the claims of financial institutions against CHF mortgage borrowers have become time-barred.

Return deposits like VAT? The elephant in the room: the risks of the deposit-return system

The deposit-return system was supposed to be simple. Eco-friendly. Leak-proof. Tax-neutral. However, it took just a few months for serious doubts to emerge. The first loopholes are no longer just theoretical, they are in plain sight. The mechanisms for abuse can be described quite precisely, and the scale of potential losses may be much greater than anticipated. Below, we examine where the system is losing control and how this can be addressed.

Contact us:

Robert Brodzik

Advocate / Counsel / NewTech / Data Protection and Cybersecurity

+48 532 206 479

r.brodzik@kochanski.pl