Digital Market Act 2022/1925 EN

1. The Commission may, upon request or on its own initiative, reconsider, amend or repeal at any moment a designation decision adopted pursuant to Article 3 for one of the following reasons:

(a)	there has been a substantial change in any of the facts on which the designation decision was based;

(b)	the designation decision was based on incomplete, incorrect or misleading information.

2. The Commission shall regularly, and at least every 3 years, review whether the gatekeepers continue to satisfy the requirements laid down in Article 3(1). That review shall also examine whether the list of core_platform_services of the gatekeeper which are individually an important gateway for business_users to reach end_users, as referred to in Article 3(1), point (b), needs to be amended. Those reviews shall have no suspending effect on the gatekeeper’s obligations.

The Commission shall also examine at least every year whether new undertakings providing core_platform_services satisfy those requirements.

Where the Commission, on the basis of the reviews pursuant to the first subparagraph, finds that the facts on which the designation of the undertakings providing core_platform_services as gatekeepers was based, have changed, it shall adopt a decision confirming, amending or repealing the designation decision.

3. The Commission shall publish and update a list of gatekeepers and the list of the core_platform_services for which they need to comply with the obligations laid down in Chapter III on an on-going basis.

CHAPTER III

PRACTICES OF GATEKEEPERS THAT LIMIT CONTESTABILITY OR ARE UNFAIR

Article 7

Obligation for gatekeepers on interoperability of number-independent_interpersonal_communications_services

1. Where a gatekeeper provides number-independent_interpersonal_communications_services that are listed in the designation decision pursuant to Article 3(9), it shall make the basic functionalities of its number-independent_interpersonal_communications_services interoperable with the number-independent_interpersonal_communications_services of another provider offering or intending to offer such services in the Union, by providing the necessary technical interfaces or similar solutions that facilitate interoperability, upon request, and free of charge.

2. The gatekeeper shall make at least the following basic functionalities referred to in paragraph 1 interoperable where the gatekeeper itself provides those functionalities to its own end_users:

(a)

following the listing in the designation decision pursuant to Article 3(9):

(i)	end-to-end text messaging between two individual end_users;

(ii)	sharing of images, voice messages, videos and other attached files in end to end communication between two individual end_users;

(b)

within 2 years from the designation:

(i)	end-to-end text messaging within groups of individual end_users;

(ii)	sharing of images, voice messages, videos and other attached files in end-to-end communication between a group chat and an individual end_user;

(c)

within 4 years from the designation:

(i)	end-to-end voice calls between two individual end_users;

(ii)	end-to-end video calls between two individual end_users;

(iii)

end-to-end voice calls between a group chat and an individual end_user;

(iv)	end-to-end video calls between a group chat and an individual end_user.

3. The level of security, including the end-to-end encryption, where applicable, that the gatekeeper provides to its own end_users shall be preserved across the interoperable services.

4. The gatekeeper shall publish a reference offer laying down the technical details and general terms and conditions of interoperability with its number-independent_interpersonal_communications_services, including the necessary details on the level of security and end-to-end encryption. The gatekeeper shall publish that reference offer within the period laid down in Article 3(10) and update it where necessary.

5. Following the publication of the reference offer pursuant to paragraph 4, any provider of number-independent_interpersonal_communications_services offering or intending to offer such services in the Union may request interoperability with the number-independent_interpersonal_communications_services provided by the gatekeeper. Such a request may cover some or all of the basic functionalities listed in paragraph 2. The gatekeeper shall comply with any reasonable request for interoperability within 3 months after receiving that request by rendering the requested basic functionalities operational.

6. The Commission may, exceptionally, upon a reasoned request by the gatekeeper, extend the time limits for compliance under paragraph 2 or 5 where the gatekeeper demonstrates that this is necessary to ensure effective interoperability and to maintain the necessary level of security, including end-to-end encryption, where applicable.

7. The end_users of the number-independent_interpersonal_communications_services of the gatekeeper and of the requesting provider of number-independent_interpersonal_communications_services shall remain free to decide whether to make use of the interoperable basic functionalities that may be provided by the gatekeeper pursuant to paragraph 1.

8. The gatekeeper shall collect and exchange with the provider of number-independent_interpersonal_communications_services that makes a request for interoperability only the personal data of end_users that is strictly necessary to provide effective interoperability. Any such collection and exchange of the personal data of end_users shall fully comply with Regulation (EU) 2016/679 and Directive 2002/58/EC.

9. The gatekeeper shall not be prevented from taking measures to ensure that third-party providers of number-independent_interpersonal_communications_services requesting interoperability do not endanger the integrity, security and privacy of its services, provided that such measures are strictly necessary and proportionate and are duly justified by the gatekeeper.

Article 11

Reporting

1. Within 6 months after its designation pursuant to Article 3, and in accordance with Article 3(10), the gatekeeper shall provide the Commission with a report describing in a detailed and transparent manner the measures it has implemented to ensure compliance with the obligations laid down in Articles 5, 6 and 7.

2. Within the deadline referred to in paragraph 1, the gatekeeper shall publish and provide the Commission with a non-confidential summary of that report.

The gatekeeper shall update that report and that non-confidential summary at least annually.

The Commission shall make a link to that non-confidential summary available on its website.

Article 12

Updating obligations for gatekeepers

1. The Commission is empowered to adopt delegated acts in accordance with Article 49 to supplement this Regulation with regard to the obligations laid down in Articles 5 and 6. Those delegated acts shall be based on a market investigation pursuant to Article 19 that has identified the need to keep those obligations up to date in order to address practices that limit the contestability of core_platform_services or that are unfair in the same way as the practices addressed by the obligations laid down in Articles 5 and 6.

2. The scope of a delegated act adopted in accordance with paragraph 1 shall be limited to:

(a)	extending an obligation that applies only in relation to certain core_platform_services, to other core_platform_services listed in Article 2, point (2);

(b)	extending an obligation that benefits certain business_users or end_users so that it benefits other business_users or end_users;

(c)	specifying the manner in which the obligations laid down in Articles 5 and 6 are to be performed by gatekeepers in order to ensure effective compliance with those obligations;

(d)	extending an obligation that applies only in relation to certain services provided together with, or in support of, core_platform_services to other services provided together with, or in support of, core_platform_services;

(e)	extending an obligation that applies only in relation to certain types of data to apply in relation to other types of data;

(f)	adding further conditions where an obligation imposes certain conditions on the behaviour of a gatekeeper; or

(g)	applying an obligation that governs the relationship between several core_platform_services of the gatekeeper to the relationship between a core_platform_service and other services of the gatekeeper.

3. The Commission is empowered to adopt delegated acts in accordance with Article 49 to amend this Regulation with regard to the list of basic functionalities identified in Article 7(2), by adding or removing functionalities of number-independent_interpersonal_communications_services.

Those delegated acts shall be based on a market investigation pursuant to Article 19 that has identified the need to keep those obligations up to date in order to address practices that limit the contestability of core_platform_services or that are unfair in the same way as the practices addressed by the obligations laid down in Article 7.

4. The Commission is empowered to adopt delegated acts in accordance with Article 49 to supplement this Regulation in respect of the obligations in Article 7 by specifying the manner in which those obligations are to be performed in order to ensure effective compliance with those obligations. Those delegated acts shall be based on a market investigation pursuant to Article 19, which has identified the need to keep those obligations up to date in order to address practices that limit the contestability of core_platform_services or that are unfair in the same way as the practices addressed by the obligations laid down in Article 7.

5. A practice as referred to in paragraphs 1, 3 and 4 shall be considered to limit the contestability of core_platform_services or to be unfair where:

(a)

that practice is engaged in by gatekeepers and is capable of impeding innovation and limiting choice for business_users and end_users because it:

(i)

affects or risks affecting the contestability of a core_platform_service or other services in the digital_sector on a lasting basis due to the creation or strengthening of barriers to entry for other undertakings or to expand as providers of a core_platform_service or other services in the digital_sector; or

(ii)	prevents other operators from having the same access to a key input as the gatekeeper; or

(b)	there is an imbalance between the rights and obligations of business_users and the gatekeeper obtains an advantage from business_users that is disproportionate to the service provided by that gatekeeper to those business_users.

Article 15

Obligation of an audit

1. Within 6 months after its designation pursuant to Article 3, a gatekeeper shall submit to the Commission an independently audited description of any techniques for profiling of consumers that the gatekeeper applies to or across its core_platform_services listed in the designation decision pursuant to Article 3(9). The Commission shall transmit that audited description to the European Data Protection Board.

2. The Commission may adopt an implementing act referred to in Article 46(1), point (g), to develop the methodology and procedure of the audit.

3. The gatekeeper shall make publicly available an overview of the audited description referred to in paragraph 1. In doing so, the gatekeeper shall be entitled to take account of the need to respect its business secrets. The gatekeeper shall update that description and that overview at least annually.

CHAPTER IV

MARKET INVESTIGATION

Article 16

Opening of a market investigation

1. When the Commission intends to carry out a market investigation with a view to the possible adoption of decisions pursuant to Articles 17, 18 and 19 it shall adopt a decision opening a market investigation.

2. Notwithstanding paragraph 1, the Commission may exercise its investigative powers under this Regulation before opening a market investigation pursuant to that paragraph.

3. The decision referred to in paragraph 1 shall specify:

(a)	the date of opening of the market investigation;

(b)	the description of the issue to which the market investigation relates to;

(c)	the purpose of the market investigation.

4. The Commission may reopen a market investigation that it has closed where:

(a)	there has been a material change in any of the facts on which a decision adopted pursuant to Article 17, 18 or 19 was based; or

(b)	the decision adopted pursuant to Article 17, 18 or 19 was based on incomplete, incorrect or misleading information.

5. The Commission may ask one or more national competent authorities to assist it in its market investigation.

Article 17

Market investigation for designating gatekeepers

1. The Commission may conduct a market investigation for the purpose of examining whether an undertaking providing core_platform_services should be designated as a gatekeeper pursuant to Article 3(8), or in order to identify the core_platform_services to be listed in the designation decision pursuant to Article 3(9). The Commission shall endeavour to conclude its market investigation within 12 months from the date referred to in Article 16(3), point (a), In order to conclude its market investigation, the Commission shall adopt an implementing act setting out its decision. That implementing act shall be adopted in accordance with the advisory procedure referred to in Article 50(2).

2. In the course of a market investigation pursuant to paragraph 1 of this Article, the Commission shall endeavour to communicate its preliminary findings to the undertaking providing core_platform_services concerned within 6 months from the date referred to in Article 16(3), point (a). In the preliminary findings, the Commission shall explain whether it considers, on a provisional basis, that it is appropriate for that undertaking to be designated as a gatekeeper pursuant to Article 3(8), and for the relevant core_platform_services to be listed pursuant to Article 3(9).

3. Where the undertaking providing core_platform_services satisfies the thresholds set out in Article 3(2), but has presented sufficiently substantiated arguments in accordance with Article 3(5) that have manifestly called into question the presumption in Article 3(2), the Commission shall endeavour to conclude the market investigation within 5 months from the date referred to in Article 16(3), point (a).

In such a case, the Commission shall endeavour to communicate its preliminary findings pursuant to paragraph 2 of this Article to the undertaking concerned within 3 months from the date referred to in Article 16(3), point (a).

4. When the Commission, pursuant to Article 3(8), designates as a gatekeeper an undertaking providing core_platform_services that does not yet enjoy an entrenched and durable position in its operations, but which will foreseeably enjoy such a position in the near future, it may declare applicable to that gatekeeper only one or more of the obligations laid down in Article 5(3) to (6) and Article 6(4), (7), (9), (10) and (13), as specified in the designation decision. The Commission shall only declare applicable those obligations that are appropriate and necessary to prevent the gatekeeper concerned from achieving, by unfair means, an entrenched and durable position in its operations. The Commission shall review such a designation in accordance with the procedure laid down in Article 4.

Article 18

Market investigation into systematic non-compliance

1. The Commission may conduct a market investigation for the purpose of examining whether a gatekeeper has engaged in systematic non-compliance. The Commission shall conclude that market investigation within 12 months from the date referred to in Article 16(3), point (a). Where the market investigation shows that a gatekeeper has systematically infringed one or more of the obligations laid down in Article 5, 6 or 7 and has maintained, strengthened or extended its gatekeeper position in relation to the requirements set out in Article 3(1), the Commission may adopt an implementing act imposing on such gatekeeper any behavioural or structural remedies which are proportionate and necessary to ensure effective compliance with this Regulation. That implementing act shall be adopted in accordance with the advisory procedure referred to in Article 50(2).

2. The remedy imposed in accordance with paragraph 1 of this Article may include, to the extent that such remedy is proportionate and necessary in order to maintain or restore fairness and contestability as affected by the systematic non-compliance, the prohibition, during a limited period, for the gatekeeper to enter into a concentration within the meaning of Article 3 of Regulation (EC) No 139/2004 regarding the core_platform_services or the other services provided in the digital_sector or enabling the collection of data that are affected by the systematic non-compliance.

3. A gatekeeper shall be deemed to have engaged in systematic non-compliance with the obligations laid down in Articles 5, 6 and 7, where the Commission has issued at least three non-compliance decisions pursuant to Article 29 against a gatekeeper in relation to any of its core_platform_services within a period of 8 years prior to the adoption of the decision opening a market investigation in view of the possible adoption of a decision pursuant to this Article.

4. The Commission shall communicate its preliminary findings to the gatekeeper concerned within 6 months from the date referred to in Article 16(3), point (a). In its preliminary findings, the Commission shall explain whether it preliminarily considers that the conditions of paragraph 1 of this Article are met and which remedy or remedies it preliminarily considers necessary and proportionate.

5. In order to enable interested third parties to effectively provide comments, the Commission shall, at the same time as communicating its preliminary findings to the gatekeeper pursuant to paragraph 4 or as soon as possible thereafter, publish a non-confidential summary of the case and the remedies that it is considering imposing. The Commission shall specify a reasonable timeframe within which such comments are to be provided.

6. Where the Commission intends to adopt a decision pursuant to paragraph 1 of this Article by making commitments offered by the gatekeeper pursuant to Article 25 binding, it shall publish a non-confidential summary of the case and the main content of the commitments. Interested third parties may submit their comments within a reasonable timeframe which shall be set by the Commission.

7. In the course of the market investigation, the Commission may extend its duration where such extension is justified on objective grounds and proportionate. The extension may apply to the deadline by which the Commission has to issue its preliminary findings, or to the deadline for adoption of the final decision. The total duration of any extension or extensions pursuant to this paragraph shall not exceed 6 months.

8. In order to ensure effective compliance by the gatekeeper with its obligations laid down in Articles 5, 6 and 7, the Commission shall regularly review the remedies that it imposes in accordance with paragraphs 1 and 2 of this Article. The Commission shall be entitled to modify those remedies if, following a new market investigation, it finds that they are not effective.

Article 19

Market investigation into new services and new practices

1. The Commission may conduct a market investigation for the purpose of examining whether one or more services within the digital_sector should be added to the list of core_platform_services laid down in Article 2, point (2) or for the purpose of detecting practices that limit the contestability of core_platform_services or that are unfair and which are not effectively addressed by this Regulation. In its assessment, the Commission shall take into account any relevant findings of proceedings under Articles 101 and 102 TFEU concerning digital markets as well as any other relevant developments.

2. The Commission may, when conducting a market investigation pursuant to paragraph 1, consult third parties, including business_users and end_users of services within the digital_sector that are being investigated and business_users and end_users who are subject to practices under investigation.

3. The Commission shall publish its findings in a report within 18 months from the date referred to in Article 16(3), point (a).

That report shall be submitted to the European Parliament and to the Council and, where appropriate, shall be accompanied by:

(a)	a legislative proposal to amend this Regulation in order to include additional services within the digital_sector in the list of core_platform_services laid down in Article 2, point (2), or to include new obligations in Chapter III; or

(b)	a draft delegated act supplementing this Regulation with regard to the obligations laid down in Articles 5 and 6, or a draft delegated act amending or supplementing this Regulation with regard to the obligations laid down in Article 7, as provided for in Article 12.

Where appropriate, the legislative proposal to amend this Regulation under point (a) of the second subparagraph may also propose to remove existing services from the list of core_platform_services laid down in Article 2, point (2), or to remove existing obligations from Article 5, 6 or 7.

CHAPTER V

INVESTIGATIVE, ENFORCEMENT AND MONITORING POWERS

Article 23

Powers to conduct inspections

1. In order to carry out its duties under this Regulation, the Commission may conduct all necessary inspections of an undertaking or association of undertakings.

2. The officials and other accompanying persons authorised by the Commission to conduct an inspection are empowered to:

(a)	enter any premises, land and means of transport of undertakings and associations of undertakings;

(b)	examine the books and other records related to the business, irrespective of the medium on which they are stored;

(c)	take or obtain in any form copies of or extracts from such books or records;

(d)	require the undertaking or association of undertakings to provide access to and explanations on its organisation, functioning, IT system, algorithms, data-handling and business practices and to record or document the explanations given by any technical means;

(e)	seal any business premises and books or records for the duration of, and to the extent necessary for, the inspection;

(f)	ask any representative or member of staff of the undertaking or association of undertakings for explanations of facts or documents relating to the subject-matter and purpose of the inspection, and to record the answers by any technical means.

3. To carry out inspections, the Commission may request the assistance of auditors or experts appointed by the Commission pursuant to Article 26(2), as well as the assistance of the national competent authority of the Member State, enforcing the rules referred to in Article 1(6) in whose territory the inspection is to be conducted.

4. During inspections the Commission, auditors or experts appointed by it and the national competent authority of the Member State, enforcing the rules referred to in Article 1(6) in whose territory the inspection is to be conducted may require the undertaking or association of undertakings to provide access to and explanations on its organisation, functioning, IT system, algorithms, data-handling and business conducts. The Commission and auditors or experts appointed by it and the national competent authority of the Member State, enforcing the rules referred to in Article 1(6) in whose territory the inspection is to be conducted may address questions to any representative or member of staff.

5. The officials and other accompanying persons authorised by the Commission to conduct an inspection shall exercise their powers upon production of a written authorisation specifying the subject matter and purpose of the inspection and the fines provided for in Article 30 applicable in the event that the production of the required books or other records related to the business is incomplete or where the answers to questions asked under paragraphs 2 and 4 of this Article are incorrect or misleading. In good time before the inspection, the Commission shall give notice of the inspection to the national competent authority of the Member State enforcing the rules referred to in Article 1(6) in whose territory it is to be conducted.

6. Undertakings or associations of undertakings are required to submit to an inspection ordered by a Commission decision. That decision shall specify the subject matter and purpose of the inspection, set the date on which it is to begin and indicate the fines and periodic penalty payments provided for in Articles 30 and 31 respectively, and the right to have that decision reviewed by the Court of Justice.

7. Officials of, and the persons authorised or appointed by, the national competent authority of the Member State enforcing the rules referred to in Article 1(6) in whose territory the inspection is to be conducted shall, at the request of that authority or of the Commission, actively assist the officials and other accompanying persons authorised by the Commission. To this end, they shall enjoy the powers set out in paragraphs 2 and 4 of this Article.

8. Where the officials and other accompanying persons authorised by the Commission find that an undertaking or association of undertakings opposes an inspection ordered pursuant to this Article, the Member State concerned shall afford them the necessary assistance, requesting, where appropriate, the assistance of the police or of an equivalent enforcement authority, so as to enable them to conduct their inspection.

9. If, according to national rules, the assistance provided for in paragraph 8 of this Article requires authorisation from a judicial authority, the Commission or the national competent authority of the Member State enforcing the rules referred to in Article 1(6) or officials authorised by those authorities shall apply for it. Such authorisation may also be applied for as a precautionary measure.

10. Where authorisation referred to in paragraph 9 of this Article is applied for, the national judicial authority shall verify that the Commission decision is authentic and that the coercive measures envisaged are neither arbitrary nor excessive having regard to the subject matter of the inspection. In its control of the proportionality of the coercive measures, the national judicial authority may ask the Commission, directly or through the national competent authority of the Member State, enforcing the rules referred to in Article 1(6), for detailed explanations in particular on the grounds the Commission has for suspecting infringement of this Regulation, as well as on the seriousness of the suspected infringement and on the nature of the involvement of the undertaking concerned. However, the national judicial authority may not call into question the necessity of the inspection nor demand that it be provided with the information in the file of the Commission. The lawfulness of the Commission decision shall be subject to review only by the Court of Justice.

Article 31

Periodic penalty payments

1. The Commission may adopt a decision imposing on undertakings, including gatekeepers where applicable, and associations of undertakings periodic penalty payments not exceeding 5 % of the average daily worldwide turnover in the preceding financial year per day, calculated from the date set by that decision, in order to compel them:

(a)	to comply with the measures specified by the Commission in a decision adopted pursuant to Article 8(2);

(b)	to comply with the decision pursuant to Article 18(1);

(c)	to supply correct and complete information within the time limit required by a request for information made by decision pursuant to Article 21;

(d)	to ensure access to data, algorithms and information about testing in response to a request made pursuant to Article 21(3) and to supply explanations on those as required by a decision pursuant to Article 21;

(e)	to submit to an inspection which was ordered by a decision taken pursuant to Article 23;

(f)	to comply with a decision ordering interim measures taken pursuant to Article 24;

(g)	to comply with commitments made legally binding by a decision pursuant to Article 25(1);

(h)	to comply with a decision pursuant to Article 29(1).

2. Where the undertakings, or associations of undertakings, have satisfied the obligation which the periodic penalty payment was intended to enforce, the Commission may adopt an implementing act, setting the definitive amount of the periodic penalty payment at a figure lower than that which would arise under the original decision. That implementing act shall be adopted in accordance with the advisory procedure referred to in Article 50(2).

Article 32

Limitation periods for the imposition of penalties

1. The powers conferred on the Commission by Articles 30 and 31 shall be subject to a 5 year limitation period.

2. Time shall begin to run on the day on which the infringement is committed. However, in the case of continuing or repeated infringements, time shall begin to run on the day on which the infringement ceases.

3. Any action taken by the Commission for the purpose of a market investigation or proceedings in respect of an infringement shall interrupt the limitation period for the imposition of fines or periodic penalty payments. The limitation period shall be interrupted with effect from the date on which the action is notified to at least one undertaking or association of undertakings which has participated in the infringement. Actions which interrupt the running of the period shall include in particular the following:

(a)	requests for information by the Commission;

(b)	written authorisations to conduct inspections issued to its officials by the Commission;

(c)	the opening of a proceeding by the Commission pursuant to Article 20.

4. Each interruption shall start time running afresh. However, the limitation period shall expire at the latest on the day on which a period equal to twice the limitation period has elapsed without the Commission having imposed a fine or a periodic penalty payment. That period shall be extended by the time during which limitation is suspended pursuant to paragraph 5.

5. The limitation period for the imposition of fines or periodic penalty payments shall be suspended for as long as the decision of the Commission is the subject of proceedings pending before the Court of Justice.

Article 48

Standardisation

Where appropriate and necessary, the Commission may mandate European standardisation bodies to facilitate the implementation of the obligations set out in this Regulation by developing appropriate standards.

Article 49

Exercise of the delegation

1. The power to adopt delegated acts is conferred on the Commission subject to the conditions laid down in this Article.

2. The power to adopt delegated acts referred to in Article 3(6) and (7) and Article 12(1), (3) and (4) shall be conferred on the Commission for a period of 5 years from 1 November 2022. The Commission shall draw up a report in respect of the delegation of power not later than 9 months before the end of the five-year period. The delegation of power shall be tacitly extended for periods of an identical duration, unless the European Parliament or the Council opposes such extension not later than 3 months before the end of each period.

3. The delegation of power referred to in Article 3(6) and (7), and Article 12(1), (3) and (4) may be revoked at any time by the European Parliament or by the Council. A decision to revoke shall put an end to the delegation of the power specified in that decision. It shall take effect the day following the publication of the decision in the Official Journal of the European Union or at a later date specified therein. It shall not affect the validity of any delegated acts already in force.

4. Before adopting a delegated act, the Commission shall consult experts designated by each Member State in accordance with the principles laid down in the Interinstitutional Agreement of 13 April 2016 on Better Law-Making.

5. As soon as it adopts a delegated act, the Commission shall notify it simultaneously to the European Parliament and to the Council.

6. A delegated act adopted pursuant to Article 3(6) and (7), and Article 12(1), (3) and (4) shall enter into force only if no objection has been expressed either by the European Parliament or by the Council within a period of 2 months of notification of that act to the European Parliament and to the Council or if, before the expiry of that period, the European Parliament and the Council have both informed the Commission that they will not object. That period shall be extended by 2 months at the initiative of the European Parliament or of the Council.

Article 54

Entry into force and application

This Regulation shall enter into force on the twentieth day following that of its publication in the Official Journal of the European Union.

It shall apply from 2 May 2023.

However, Article 3(6) and (7) and Articles 40, 46, 47, 48, 49 and 50 shall apply from 1 November 2022 and Article 42 and Article 43 shall apply from 25 June 2023.

Nevertheless, if the date of 25 June 2023 precedes the date of application referred to in the second paragraph of this Article, the application of Article 42 and Article 43 shall be postponed until the date of application referred to in the second paragraph of this Article.

This Regulation shall be binding in its entirety and directly applicable in all Member States.

Done at Strasbourg, 14 September 2022.

For the European Parliament

The President

R. METSOLA

For the Council

The President

M. BEK

(1) OJ C 286, 16.7.2021, p. 64.

(2) OJ C 440, 29.10.2021, p. 67.

(3) Position of the European Parliament of 5 July 2022 (not yet published in the Official Journal) and decision of the Council of 18 July 2022.

(4) Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC ( General Data Protection Regulation) (OJ L 119, 4.5.2016, p. 1).

(5) Regulation (EU) 2019/1150 of the European Parliament and of the Council of 20 June 2019 on promoting fairness and transparency for business_users of online_intermediation_services (OJ L 186, 11.7.2019, p. 57).

(6) Directive 2002/58/EC of the European Parliament and of the Council of 12 July 2002 concerning the processing of personal data and the protection of privacy in the electronic communications sector (OJ L 201, 31.7.2002, p. 37).

(7) Directive 2005/29/EC of the European Parliament and of the Council of 11 May 2005 concerning unfair business-to-consumer commercial practices in the internal market and amending Council Directive 84/450/EEC, Directives 97/7/EC, 98/27/EC and 2002/65/EC of the European Parliament and of the Council and Regulation (EC) No 2006/2004 of the European Parliament and of the Council (‘Unfair Commercial Practices Directive’) (OJ L 149, 11.6.2005, p. 22).

(8) Directive 2010/13/EU of the European Parliament and of the Council of 10 March 2010 on the coordination of certain provisions laid down by law, regulation or administrative action in Member States concerning the provision of audiovisual media services (Audiovisual Media Services Directive) (OJ L 95, 15.4.2010, p. 1).

(9) Directive (EU) 2015/2366 of the European Parliament and of the Council of 25 November 2015 on payment_services in the internal market, amending Directives 2002/65/EC, 2009/110/EC and 2013/36/EU and Regulation (EU) No 1093/2010, and repealing Directive 2007/64/EC (OJ L 337, 23.12.2015, p. 35).

(10) Directive (EU) 2019/790 of the European Parliament and of the Council of 17 April 2019 on copyright and related rights in the Digital Single Market and amending Directives 96/9/EC and 2001/29/EC (OJ L 130, 17.5.2019, p. 92).

(11) Directive (EU) 2019/882 of the European Parliament and of the Council of 17 April 2019 on the accessibility requirements for products and services (OJ L 151, 7.6.2019, p. 70).

(12) Council Directive 93/13/EEC of 5 April 1993 on unfair terms in consumer contracts (OJ L 95, 21.4.1993, p. 29).

(13) Directive (EU) 2015/1535 of the European Parliament and of the Council of 9 September 2015 laying down a procedure for the provision of information in the field of technical regulations and of rules on Information Society services (OJ L 241, 17.9.2015, p. 1).

(14) Directive (EU) 2018/1972 of the European Parliament and of the Council of 11 December 2018 establishing the European Electronic Communications Code (OJ L 321, 17.12.2018, p. 36).

(15) Directive (EU) 2016/2102 of the European Parliament and of the Council of 26 October 2016 on the accessibility of the websites and mobile applications of public sector bodies (OJ L 327, 2.12.2016, p. 1).

(16) Regulation (EU) No 182/2011 of the European Parliament and of the Council of 16 February 2011 laying down the rules and general principles concerning mechanisms for control by the Member States of the Commission's exercise of implementing powers (OJ L 55, 28.2.2011, p. 13).

(17) Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/EC (OJ L 295, 21.11.2018, p. 39).

(18) Council Regulation (EC) No 1/2003 of 16 December 2002 on the implementation of the rules on competition laid down in Articles 81 and 82 of the Treaty (OJ L 1, 4.1.2003, p. 1).

(19) OJ L 123, 12.5.2016, p. 1.

(20) Directive (EU) 2019/1937 of the European Parliament and of the Council of 23 October 2019 on the protection of persons who report breaches of Union law (OJ L 305, 26.11.2019, p. 17).

(21) Directive (EU) 2020/1828 of the European Parliament and of the Council of 25 November 2020 on representative actions for the protection of the collective interests of consumers and repealing Directive 2009/22/EC (OJ L 409, 4.12.2020, p. 1).

(22) OJ C 147, 26.4.2021, p. 4.

(23) Council Regulation (EC) No 139/2004 of 20 January 2004 on the control of concentrations between undertakings (the EC Merger Regulation) (OJ L 24, 29.1.2004, p. 1).

(24) Directive (EU) 2016/1148 of the European Parliament and of the Council of 6 July 2016 concerning measures for a high common level of security of network and information systems across the Union (OJ L 194, 19.7.2016, p. 1).

ANNEX

A. ‘ General’

This Annex aims at specifying the methodology for identifying and calculating the ‘active end_users’ and the ‘active business_users’ for each core_platform_service listed in Article 2, point (2). It provides a reference to enable an undertaking to assess whether its core_platform_services meet the quantitative thresholds set out in Article 3(2), point (b) and would therefore be presumed to meet the requirement in Article 3(1), point (b). Such reference will therefore equally be of relevance to any broader assessment under Article 3(8). It is the responsibility of the undertaking to come to the best approximation possible in line with the common principles and specific methodology set out in this Annex. Nothing in this Annex precludes the Commission, within the time limits laid down in the relevant provisions of this Regulation, from requiring the undertaking providing core_platform_services to provide any information necessary to identify and calculate the ‘active end_users’ and the ‘active business_users’. Nothing in this Annex should constitute a legal basis for tracking users. The methodology contained in this Annex is also without prejudice to any of the obligations laid down in this Regulation, notably in Article 3(3) and (8) and Article 13(3). In particular, the required compliance with Article 13(3) also means identifying and calculating ‘active end_users’ and ‘active business_users’ based either on a precise measurement or on the best approximation available, in line with the actual identification and calculation capacities that the undertaking providing core_platform_services possesses at the relevant point in time. Those measurements or the best approximation available shall be consistent with, and include, those reported under Article 15.

Article 2, points (20) and (21) set out the definitions of ‘ end_user’ and ‘ business_user’, which are common to all core_platform_services.

In order to identify and calculate the number of ‘active end_users’ and ‘active business_users’, this Annex refers to the concept of ‘unique users’. The concept of ‘unique users’ encompasses ‘active end_users’ and ‘active business_users’ counted only once, for the relevant core_platform_service, over the course of a specified time period (i.e. month in case of ‘active end_users’ and year in case of ‘active business_users’), no matter how many times they engaged with the relevant core_platform_service over that period. This is without prejudice to the fact that the same natural or legal person can simultaneously constitute an ‘active end_user’ or an ‘active business_user’ for different core_platform_services.

B. ‘Active end_users’

The number of ‘unique users’ as regards ‘active end_users’ shall be identified according to the most accurate metric reported by the undertaking providing any of the core_platform_services, specifically:

It is considered that collecting data about the use of core_platform_services from signed-in or logged-in environments would prima facie present the lowest risk of duplication, for example in relation to user behaviour across devices or platforms. Hence, the undertaking shall submit aggregate anonymized data on the number of unique end_users per respective core_platform_service based on signed-in or logged-in environments, if such data exists.

In the case of core_platform_services which are also accessed by end_users outside signed-in or logged-in environments, the undertaking shall additionally submit aggregate anonymized data on the number of unique end_users of the respective core_platform_service based on an alternate metric capturing also end_users outside signed-in or logged-in environments, such as internet protocol addresses, cookie identifiers or other identifiers such as radio frequency identification tags, provided that those addresses or identifiers are objectively necessary for the provision of the core_platform_services.

The number of ‘monthly active end_users’ is based on the average number of monthly active end_users throughout the largest part of the financial year. The notion ‘the largest part of the financial year’ is intended to allow an undertaking providing core_platform_services to discount outlier figures in a given year. Outlier figures inherently mean figures that fall significantly outside the normal and foreseeable figures. An unforeseen peak or drop in user engagement that occurred during a single month of the financial year is an example of what could constitute such outlier figures. Figures related to annually recurring occurrences, such as annual sales promotions, are not outlier figures.

C. ‘Active business_users’

The number of ‘unique users’ as regards ‘active business_users’ is to be determined, where applicable, at the account level with each distinct business account associated with the use of a core_platform_service provided by the undertaking constituting one unique business_user of that respective core_platform_service. If the notion of ‘business account’ does not apply to a given core_platform_service, the relevant undertaking providing core_platform_services shall determine the number of unique business_users by referring to the relevant undertaking.

D. ‘ Submission_of_information’

The undertaking submitting to the Commission pursuant to Article 3(3) information concerning the number of active end_users and active business_users per core_platform_service shall be responsible for ensuring the completeness and accuracy of that information. In that regard:

a.	The undertaking shall be responsible for submitting data for a respective core_platform_service that avoids under-counting and over-counting the number of active end_users and active business_users (for example, where users access the core_platform_services across different platforms or devices).

The undertaking shall be responsible for providing precise and succinct explanations about the methodology used to arrive at the information and for any risk of under-counting or over-counting of the number of active end_users and active business_users for a respective core_platform_service and for the solutions adopted to address that risk.

c.	The undertaking shall provide data that is based on an alternative metric when the Commission has concerns about the accuracy of data provided by the undertaking providing core_platform_services.

For the purpose of calculating the number of ‘active end_users’ and ‘active business_users’:

The undertaking providing core_platform_service(s) shall not identify core_platform_services that belong to the same category of core_platform_services pursuant to Article 2, point (2) as distinct mainly on the basis that they are provided using different domain names, whether country code top-level domains (ccTLDs) or generic top-level domains (gTLDs), or any geographic attributes.

The undertaking providing core_platform_service(s) shall consider as distinct core_platform_services those core_platform_services, which are used for different purposes by either their end_users or their business_users, or both, even if their end_users or business_users may be the same and even if they belong to the same category of core_platform_services pursuant to Article 2, point (2).

The undertaking providing core_platform_service(s) shall consider as distinct core_platform_services those services which the relevant undertaking offers in an integrated way, but which:

(i)	do not belong to the same category of core_platform_services pursuant to Article 2, point (2); or

(ii)	are used for different purposes by either their end_users or their business_users, or both, even if their end_users and business_users may be the same and even if they belong to the same category of core_platform_services pursuant to Article 2, point (2).

E. ‘ Specific_definitions’

The table below sets out specific definitions of ‘active end_users’ and ‘active business_users’ for each core_platform_service.

Core platform services	Active end_users	Active business_users
Online intermediation services	Number of unique end_users who engaged with the online intermediation service at least once in the month for example through actively logging-in, making a query, clicking or scrolling or concluded a transaction through the online intermediation service at least once in the month.	Number of unique business_users who had at least one item listed in the online intermediation service during the whole year or concluded a transaction enabled by the online intermediation service during the year.
Online search engines	Number of unique end_users who engaged with the online_search_engine at least once in the month, for example through making a query.	Number of unique business_users with business websites (i.e. website used in commercial or professional capacity) indexed by or part of the index of the online_search_engine during the year.
Online social networking services	Number of unique end_users who engaged with the online_social_networking_service at least once in the month, for example through actively logging-in, opening a page, scrolling, clicking, liking, making a query, posting or commenting.	Number of unique business_users who have a business listing or business account in the online_social_networking_service and have engaged in any way with the service at least once during the year, for example through actively logging-in, opening a page, scrolling, clicking, liking, making a query, posting, commenting or using its tools for businesses.
Video-sharing platform services	Number of unique end_users who engaged with the video-sharing_platform_service at least once in the month, for example through playing a segment of audiovisual content, making a query or uploading a piece of audiovisual content, notably including user-generated videos.	Number of unique business_users who provided at least one piece of audiovisual content uploaded or played on the video-sharing_platform_service during the year.
Number-independent interpersonal communication services	Number of unique end_users who initiated or participated in any way in a communication through the number-independent interpersonal communication service at least once in the month.	Number of unique business_users who used a business account or otherwise initiated or participated in any way in a communication through the number-independent interpersonal communication service to communicate directly with an end_user at least once during the year.
Operating systems	Number of unique end_users who utilised a device with the operating_system, which has been activated, updated or used at least once in the month.	Number of unique developers who published, updated or offered at least one software_application or software program using the programming language or any software development tools of, or running in any way on, the operating_system during the year.
Virtual assistant	Number of unique end_users who engaged with the virtual_assistant in any way at least once in the month, such as for example through activating it, asking a question, accessing a service through a command or controlling a smart home device.	Number of unique developers who offered at least one virtual_assistant software_application or a functionality to make an existing software_application accessible through the virtual_assistant during the year.
Web browsers	Number of unique end_users who engaged with the web_browser at least once in the month, for example through inserting a query or website address in the URL line of the web_browser.	Number of unique business_users whose business websites (i.e. website used in commercial or professional capacity) have been accessed via the web_browser at least once during the year or who offered a plug-in, extension or add-ons used on the web_browser during the year.
Cloud computing services	Number of unique end_users who engaged with any cloud_computing_services from the relevant provider of cloud_computing_services at least once in the month, in return for any type of remuneration, regardless of whether this remuneration occurs in the same month.	Number of unique business_users who provided any cloud_computing_services hosted in the cloud infrastructure of the relevant provider of cloud_computing_services during the year.
Online advertising services	For proprietary sales of advertising space: Number of unique end_users who were exposed to an advertisement impression at least once in the month. For advertising intermediation services (including advertising networks, advertising exchanges and any other advertising intermediation services): Number of unique end_users who were exposed to an advertisement impression which triggered the advertising intermediation service at least once in the month.	For proprietary sales of advertising space: Number of unique advertisers who had at least one advertisement impression displayed during the year. For advertising intermediation services (including advertising networks, advertising exchanges and any other advertising intermediation services): Number of unique business_users (including advertisers, publishers or other intermediators) who interacted via or were served by the advertising intermediation service during the year.

whereas

keyboard_tab Digital Market Act 2022/1925 EN

Digital Market Act 2022/1925 EN