Digital Market Act 2022/1925 EN

1. The purpose of this Regulation is to contribute to the proper functioning of the internal market by laying down harmonised rules ensuring for all businesses, contestable and fair markets in the digital_sector across the Union where gatekeepers are present, to the benefit of business_users and end_users.

2. This Regulation shall apply to core_platform_services provided or offered by gatekeepers to business_users established in the Union or end_users established or located in the Union, irrespective of the place of establishment or residence of the gatekeepers and irrespective of the law otherwise applicable to the provision of service.

3. This Regulation shall not apply to markets related to:

(a)	electronic communications networks as defined in Article 2, point (1), of Directive (EU) 2018/1972;

(b)	electronic communications services as defined in Article 2, point (4), of Directive (EU) 2018/1972, other than those related to number-independent_interpersonal_communications_services.

4. With regard to interpersonal communications services as defined in Article 2, point (5) of Directive (EU) 2018/1972, this Regulation is without prejudice to the powers and responsibilities granted to the national regulatory and other competent authorities by virtue of Article 61 of that Directive.

5. In order to avoid the fragmentation of the internal market, Member States shall not impose further obligations on gatekeepers by way of laws, regulations or administrative measures for the purpose of ensuring contestable and fair markets. Nothing in this Regulation precludes Member States from imposing obligations on undertakings, including undertakings providing core_platform_services, for matters falling outside the scope of this Regulation, provided that those obligations are compatible with Union law and do not result from the fact that the relevant undertakings have the status of a gatekeeper within the meaning of this Regulation.

6. This Regulation is without prejudice to the application of Articles 101 and 102 TFEU. It is also without prejudice to the application of:

(a)	national competition rules prohibiting anti-competitive agreements, decisions by associations of undertakings, concerted practices and abuses of dominant positions;

(b)	national competition rules prohibiting other forms of unilateral conduct insofar as they are applied to undertakings other than gatekeepers or amount to the imposition of further obligations on gatekeepers; and

(c)	Council Regulation (EC) No 139/2004 (23) and national rules concerning merger control.

7. National authorities shall not take decisions which run counter to a decision adopted by the Commission under this Regulation. The Commission and Member States shall work in close cooperation and coordinate their enforcement actions on the basis of the principles established in Articles 37 and 38.

Article 2

Definitions

For the purposes of this Regulation, the following definitions apply:

(1)	‘ gatekeeper’ means an undertaking providing core_platform_services, designated pursuant to Article 3;

(2)

‘ core_platform_service’ means any of the following:

(a)	online_intermediation_services;

(b)	online_search_engines;

(c)	online_social_networking_services;

(d)	video-sharing_platform_services;

(e)	number-independent_interpersonal_communications_services;

(f)	operating_systems;

(g)	web_browsers;

(h)	virtual_assistants;

(i)	cloud_computing_services;

(j)	online advertising services, including any advertising networks, advertising exchanges and any other advertising intermediation services, provided by an undertaking that provides any of the core_platform_services listed in points (a) to (i);

(3)	‘ information_society_service’ means any service as defined in Article 1(1), point (b), of Directive (EU) 2015/1535;

(4)	‘ digital_sector’ means the sector of products and services provided by means of, or through, information_society_services;

(5)	‘ online_intermediation_services’ means online_intermediation_services as defined in Article 2, point (2), of Regulation (EU) 2019/1150;

(6)	‘ online_search_engine’ means an online_search_engine as defined in Article 2, point (5), of Regulation (EU) 2019/1150;

(7)	‘ online_social_networking_service’ means a platform that enables end_users to connect and communicate with each other, share content and discover other users and content across multiple devices and, in particular, via chats, posts, videos and recommendations;

(8)	‘ video-sharing_platform_service’ means a video-sharing_platform_service as defined in Article 1(1), point (aa), of Directive 2010/13/EU;

(9)	‘ number-independent_interpersonal_communications_service’ means a number-independent_interpersonal_communications_service as defined in Article 2, point (7), of Directive (EU) 2018/1972;

(10)	‘ operating_system’ means a system software that controls the basic functions of the hardware or software and enables software_applications to run on it;

(11)	‘ web_browser’ means a software_application that enables end_users to access and interact with web content hosted on servers that are connected to networks such as the Internet, including standalone web_browsers as well as web_browsers integrated or embedded in software or similar;

(12)	‘ virtual_assistant’ means a software that can process demands, tasks or questions, including those based on audio, visual, written input, gestures or motions, and that, based on those demands, tasks or questions, provides access to other services or controls connected physical devices;

(13)	‘ cloud_computing_service’ means a cloud_computing_service as defined in Article 4, point (19), of Directive (EU) 2016/1148 of the European Parliament and of the Council (24);

(14)	‘ software_application_stores’ means a type of online_intermediation_services, which is focused on software_applications as the intermediated product or service;

(15)	‘ software_application’ means any digital product or service that runs on an operating_system;

(16)	‘ payment_service’ means a payment_service as defined in Article 4, point (3) of Directive (EU) 2015/2366;

(17)	‘technical service supporting payment_service’ means a service within the meaning of Article 3, point (j), of Directive (EU) 2015/2366;

(18)	‘ payment_system_for_in-app_purchases’ means a software_application, service or user interface which facilitates purchases of digital content or digital services within a software_application, including content, subscriptions, features or functionality, and the payments for such purchases;

(19)	‘ identification_service’ means a type of service provided together with or in support of core_platform_services that enables any type of verification of the identity of end_users or business_users, regardless of the technology used;

(20)	‘ end_user’ means any natural or legal person using core_platform_services other than as a business_user;

(21)	‘ business_user’ means any natural or legal person acting in a commercial or professional capacity using core_platform_services for the purpose of or in the course of providing goods or services to end_users;

(22)

‘ ranking’ means the relative prominence given to goods or services offered through online_intermediation_services, online_social_networking_services, video-sharing_platform_services or virtual_assistants, or the relevance given to search_results by online_search_engines, as presented, organised or communicated by the undertakings providing online_intermediation_services, online_social_networking_services, video-sharing_platform_services, virtual_assistants or online_search_engines, irrespective of the technological means used for such presentation, organisation or communication and irrespective of whether only one result is presented or communicated;

(23)

‘ search_results’ means any information in any format, including textual, graphic, vocal or other outputs, returned in response to, and related to, a search query, irrespective of whether the information returned is a paid or an unpaid result, a direct answer or any product, service or information offered in connection with the organic results, or displayed along with or partly or entirely embedded in them;

(24)	‘ data’ means any digital representation of acts, facts or information and any compilation of such acts, facts or information, including in the form of sound, visual or audiovisual recording;

(25)	‘personal data’ means personal data as defined in Article 4, point (1), of Regulation (EU) 2016/679;

(26)	‘non-personal data’ means data other than personal data;

(27)	‘ undertaking’ means an entity engaged in an economic activity, regardless of its legal status and the way in which it is financed, including all linked enterprises or connected undertakings that form a group through the direct or indirect control of an enterprise or undertaking by another;

(28)	‘ control’ means the possibility of exercising decisive influence on an undertaking, within the meaning of Article 3(2) of Regulation (EC) No 139/2004;

(29)

‘ interoperability’ means the ability to exchange information and mutually use the information which has been exchanged through interfaces or other solutions, so that all elements of hardware or software work with other hardware and software and with users in all the ways in which they are intended to function;

(30)	‘ turnover’ means the amount derived by an undertaking within the meaning of Article 5(1) of Regulation (EC) No 139/2004;

(31)	‘ profiling’ means profiling as defined in Article 4, point (4), of Regulation (EU) 2016/679;

(32)	‘ consent’ means consent as defined in Article 4, point (11), of Regulation (EU) 2016/679;

(33)	‘ national_court’ means a court or tribunal of a Member State within the meaning of Article 267 TFEU.

CHAPTER II

GATEKEEPERS

Article 4

Review of the status of gatekeeper

1. The Commission may, upon request or on its own initiative, reconsider, amend or repeal at any moment a designation decision adopted pursuant to Article 3 for one of the following reasons:

(a)	there has been a substantial change in any of the facts on which the designation decision was based;

(b)	the designation decision was based on incomplete, incorrect or misleading information.

2. The Commission shall regularly, and at least every 3 years, review whether the gatekeepers continue to satisfy the requirements laid down in Article 3(1). That review shall also examine whether the list of core_platform_services of the gatekeeper which are individually an important gateway for business_users to reach end_users, as referred to in Article 3(1), point (b), needs to be amended. Those reviews shall have no suspending effect on the gatekeeper’s obligations.

The Commission shall also examine at least every year whether new undertakings providing core_platform_services satisfy those requirements.

Where the Commission, on the basis of the reviews pursuant to the first subparagraph, finds that the facts on which the designation of the undertakings providing core_platform_services as gatekeepers was based, have changed, it shall adopt a decision confirming, amending or repealing the designation decision.

3. The Commission shall publish and update a list of gatekeepers and the list of the core_platform_services for which they need to comply with the obligations laid down in Chapter III on an on-going basis.

CHAPTER III

PRACTICES OF GATEKEEPERS THAT LIMIT CONTESTABILITY OR ARE UNFAIR

Article 12

Updating obligations for gatekeepers

1. The Commission is empowered to adopt delegated acts in accordance with Article 49 to supplement this Regulation with regard to the obligations laid down in Articles 5 and 6. Those delegated acts shall be based on a market investigation pursuant to Article 19 that has identified the need to keep those obligations up to date in order to address practices that limit the contestability of core_platform_services or that are unfair in the same way as the practices addressed by the obligations laid down in Articles 5 and 6.

2. The scope of a delegated act adopted in accordance with paragraph 1 shall be limited to:

(a)	extending an obligation that applies only in relation to certain core_platform_services, to other core_platform_services listed in Article 2, point (2);

(b)	extending an obligation that benefits certain business_users or end_users so that it benefits other business_users or end_users;

(c)	specifying the manner in which the obligations laid down in Articles 5 and 6 are to be performed by gatekeepers in order to ensure effective compliance with those obligations;

(d)	extending an obligation that applies only in relation to certain services provided together with, or in support of, core_platform_services to other services provided together with, or in support of, core_platform_services;

(e)	extending an obligation that applies only in relation to certain types of data to apply in relation to other types of data;

(f)	adding further conditions where an obligation imposes certain conditions on the behaviour of a gatekeeper; or

(g)	applying an obligation that governs the relationship between several core_platform_services of the gatekeeper to the relationship between a core_platform_service and other services of the gatekeeper.

3. The Commission is empowered to adopt delegated acts in accordance with Article 49 to amend this Regulation with regard to the list of basic functionalities identified in Article 7(2), by adding or removing functionalities of number-independent_interpersonal_communications_services.

Those delegated acts shall be based on a market investigation pursuant to Article 19 that has identified the need to keep those obligations up to date in order to address practices that limit the contestability of core_platform_services or that are unfair in the same way as the practices addressed by the obligations laid down in Article 7.

4. The Commission is empowered to adopt delegated acts in accordance with Article 49 to supplement this Regulation in respect of the obligations in Article 7 by specifying the manner in which those obligations are to be performed in order to ensure effective compliance with those obligations. Those delegated acts shall be based on a market investigation pursuant to Article 19, which has identified the need to keep those obligations up to date in order to address practices that limit the contestability of core_platform_services or that are unfair in the same way as the practices addressed by the obligations laid down in Article 7.

5. A practice as referred to in paragraphs 1, 3 and 4 shall be considered to limit the contestability of core_platform_services or to be unfair where:

(a)

that practice is engaged in by gatekeepers and is capable of impeding innovation and limiting choice for business_users and end_users because it:

(i)

affects or risks affecting the contestability of a core_platform_service or other services in the digital_sector on a lasting basis due to the creation or strengthening of barriers to entry for other undertakings or to expand as providers of a core_platform_service or other services in the digital_sector; or

(ii)	prevents other operators from having the same access to a key input as the gatekeeper; or

(b)	there is an imbalance between the rights and obligations of business_users and the gatekeeper obtains an advantage from business_users that is disproportionate to the service provided by that gatekeeper to those business_users.

Article 14

Obligation to inform about concentrations

1. A gatekeeper shall inform the Commission of any intended concentration within the meaning of Article 3 of Regulation (EC) No 139/2004, where the merging entities or the target of concentration provide core_platform_services or any other services in the digital_sector or enable the collection of data, irrespective of whether it is notifiable to the Commission under that Regulation or to a competent national competition authority under national merger rules.

A gatekeeper shall inform the Commission of such a concentration prior to its implementation and following the conclusion of the agreement, the announcement of the public bid, or the acquisition of a controlling interest.

2. The information provided by the gatekeeper pursuant to paragraph 1 shall at least describe the undertakings concerned by the concentration, their Union and worldwide annual turnovers, their fields of activity, including activities directly related to the concentration, and the transaction value of the agreement or an estimation thereof, along with a summary of the concentration, including its nature and rationale and a list of the Member States concerned by the concentration.

The information provided by the gatekeeper shall also describe, for any relevant core_platform_services, their Union annual turnovers, their numbers of yearly active business_users and their numbers of monthly active end_users, respectively.

3. If, following any concentration referred to in paragraph 1 of this Article, additional core_platform_services individually meet the thresholds in Article 3(2), point (b), the gatekeeper concerned shall inform the Commission thereof within 2 months from the implementation of the concentration and provide the Commission with the information referred to in Article 3(2).

4. The Commission shall inform the competent authorities of the Member States of any information received pursuant to paragraph 1 and publish annually the list of acquisitions of which it has been informed by gatekeepers pursuant to that paragraph.

The Commission shall take account of the legitimate interest of undertakings in the protection of their business secrets.

5. The competent authorities of the Member States may use the information received under paragraph 1 of this Article to request the Commission to examine the concentration pursuant to Article 22 of Regulation (EC) No 139/2004.

Article 21

Requests for information

1. In order to carry out its duties under this Regulation, the Commission may, by simple request or by decision, require from undertakings and associations of undertakings to provide all necessary information. The Commission may also, by simple request or by decision, require access to any data and algorithms of undertakings and information about testing, as well as requesting explanations of them.

2. When sending a simple request for information to an undertaking or association of undertakings, the Commission shall state the legal basis and purpose of the request, specify what information is required and fix the time limit within which the information is to be provided, as well as the fines provided for in Article 30 applicable for supplying incomplete, incorrect or misleading information or explanations.

3. Where the Commission requires undertakings and associations of undertakings to supply information by decision, it shall state the legal basis and purpose of the request, specify what information is required and fix the time limit within which the information is to be provided. Where the Commission requires undertakings to provide access to any data, algorithms and information about testing, it shall state the purpose of the request and fix the time -limit within which it is to be provided. It shall also indicate the fines provided for in Article 30 and indicate or impose the periodic penalty payments provided for in Article 31. It shall further indicate the right to have the decision reviewed by the Court of Justice.

4. The undertakings or associations of undertakings or their representatives shall supply the information requested on behalf of the undertaking or the association of undertakings concerned. Lawyers duly authorised to act may supply the information on behalf of their clients. The latter shall remain fully responsible if the information supplied is incomplete, incorrect or misleading.

5. At the request of the Commission, the competent authorities of the Member States shall provide the Commission with all necessary information in their possession to carry out the duties assigned to it by this Regulation.

Article 23

Powers to conduct inspections

1. In order to carry out its duties under this Regulation, the Commission may conduct all necessary inspections of an undertaking or association of undertakings.

2. The officials and other accompanying persons authorised by the Commission to conduct an inspection are empowered to:

(a)	enter any premises, land and means of transport of undertakings and associations of undertakings;

(b)	examine the books and other records related to the business, irrespective of the medium on which they are stored;

(c)	take or obtain in any form copies of or extracts from such books or records;

(d)	require the undertaking or association of undertakings to provide access to and explanations on its organisation, functioning, IT system, algorithms, data-handling and business practices and to record or document the explanations given by any technical means;

(e)	seal any business premises and books or records for the duration of, and to the extent necessary for, the inspection;

(f)	ask any representative or member of staff of the undertaking or association of undertakings for explanations of facts or documents relating to the subject-matter and purpose of the inspection, and to record the answers by any technical means.

3. To carry out inspections, the Commission may request the assistance of auditors or experts appointed by the Commission pursuant to Article 26(2), as well as the assistance of the national competent authority of the Member State, enforcing the rules referred to in Article 1(6) in whose territory the inspection is to be conducted.

4. During inspections the Commission, auditors or experts appointed by it and the national competent authority of the Member State, enforcing the rules referred to in Article 1(6) in whose territory the inspection is to be conducted may require the undertaking or association of undertakings to provide access to and explanations on its organisation, functioning, IT system, algorithms, data-handling and business conducts. The Commission and auditors or experts appointed by it and the national competent authority of the Member State, enforcing the rules referred to in Article 1(6) in whose territory the inspection is to be conducted may address questions to any representative or member of staff.

5. The officials and other accompanying persons authorised by the Commission to conduct an inspection shall exercise their powers upon production of a written authorisation specifying the subject matter and purpose of the inspection and the fines provided for in Article 30 applicable in the event that the production of the required books or other records related to the business is incomplete or where the answers to questions asked under paragraphs 2 and 4 of this Article are incorrect or misleading. In good time before the inspection, the Commission shall give notice of the inspection to the national competent authority of the Member State enforcing the rules referred to in Article 1(6) in whose territory it is to be conducted.

6. undertakings or associations of undertakings are required to submit to an inspection ordered by a Commission decision. That decision shall specify the subject matter and purpose of the inspection, set the date on which it is to begin and indicate the fines and periodic penalty payments provided for in Articles 30 and 31 respectively, and the right to have that decision reviewed by the Court of Justice.

7. Officials of, and the persons authorised or appointed by, the national competent authority of the Member State enforcing the rules referred to in Article 1(6) in whose territory the inspection is to be conducted shall, at the request of that authority or of the Commission, actively assist the officials and other accompanying persons authorised by the Commission. To this end, they shall enjoy the powers set out in paragraphs 2 and 4 of this Article.

8. Where the officials and other accompanying persons authorised by the Commission find that an undertaking or association of undertakings opposes an inspection ordered pursuant to this Article, the Member State concerned shall afford them the necessary assistance, requesting, where appropriate, the assistance of the police or of an equivalent enforcement authority, so as to enable them to conduct their inspection.

9. If, according to national rules, the assistance provided for in paragraph 8 of this Article requires authorisation from a judicial authority, the Commission or the national competent authority of the Member State enforcing the rules referred to in Article 1(6) or officials authorised by those authorities shall apply for it. Such authorisation may also be applied for as a precautionary measure.

10. Where authorisation referred to in paragraph 9 of this Article is applied for, the national judicial authority shall verify that the Commission decision is authentic and that the coercive measures envisaged are neither arbitrary nor excessive having regard to the subject matter of the inspection. In its control of the proportionality of the coercive measures, the national judicial authority may ask the Commission, directly or through the national competent authority of the Member State, enforcing the rules referred to in Article 1(6), for detailed explanations in particular on the grounds the Commission has for suspecting infringement of this Regulation, as well as on the seriousness of the suspected infringement and on the nature of the involvement of the undertaking concerned. However, the national judicial authority may not call into question the necessity of the inspection nor demand that it be provided with the information in the file of the Commission. The lawfulness of the Commission decision shall be subject to review only by the Court of Justice.

Article 30

Fines

1. In the non-compliance decision, the Commission may impose on a gatekeeper fines not exceeding 10 % of its total worldwide turnover in the preceding financial year where it finds that the gatekeeper, intentionally or negligently, fails to comply with:

(a)	any of the obligations laid down in Articles 5, 6 and 7;

(b)	measures specified by the Commission in a decision adopted pursuant to Article 8(2);

(c)	remedies imposed pursuant to Article 18(1);

(d)	interim measures ordered pursuant to Article 24; or

(e)	commitments made legally binding pursuant to Article 25.

2. Notwithstanding paragraph 1 of this Article, in the non-compliance decision the Commission may impose on a gatekeeper fines up to 20 % of its total worldwide turnover in the preceding financial year where it finds that a gatekeeper has committed the same or a similar infringement of an obligation laid down in Article 5, 6 or 7 in relation to the same core_platform_service as it was found to have committed in a non-compliance decision adopted in the 8 preceding years.

3. The Commission may adopt a decision, imposing on undertakings, including gatekeepers where applicable, and associations of undertakings, fines not exceeding 1 % of their total worldwide turnover in the preceding financial year where they intentionally or negligently:

(a)	fail to provide within the time limit information that is required for assessing their designation as gatekeepers pursuant to Article 3 or supply incorrect, incomplete or misleading information;

(b)	fail to comply with the obligation to notify the Commission according to Article 3(3);

(c)	fail to notify information or supply incorrect, incomplete or misleading information that is required pursuant to Article 14;

(d)	fail to submit the description or supply incorrect, incomplete or misleading information that is required pursuant to Article 15;

(e)	fail to provide access to data, algorithms or information about testing in response to a request made pursuant to Article 21(3);

(f)	fail to supply the information requested within the time limit fixed pursuant to Article 21(3) or supply incorrect, incomplete or misleading information or explanations that are requested pursuant to Article 21 or given in an interview pursuant to Article 22;

(g)	fail to rectify within a time limit set by the Commission, incorrect, incomplete or misleading information given by a representative or a member of staff, or fail or refuse to provide complete information on facts relating to the subject-matter and purpose of an inspection, pursuant to Article 23;

(h)	refuse to submit to an inspection pursuant to Article 23;

(i)	fail to comply with the obligations imposed by the Commission pursuant to Article 26;

(j)	fail to introduce a compliance function in accordance with Article 28; or

(k)	fail to comply with the conditions for access to the Commission’s file pursuant to Article 34(4).

4. In fixing the amount of a fine, the Commission shall take into account the gravity, duration, recurrence, and, for fines imposed pursuant to paragraph 3, delay caused to the proceedings.

5. When a fine is imposed on an association of undertakings taking account of the worldwide turnover of its members and that association is not solvent, it shall be obliged to call for contributions from its members to cover the amount of the fine.

Where such contributions have not been made to the association of undertakings within a time limit set by the Commission, the Commission may require payment of the fine directly by any of the undertakings whose representatives were members of the decision-making bodies concerned of that association.

After having required payment in accordance with the second subparagraph, the Commission may require payment of the balance by any of the members of the association of undertakings, where necessary to ensure full payment of the fine.

However, the Commission shall not require payment pursuant to the second or the third subparagraph from undertakings which show that they have not implemented the decision of the association of undertakings that infringed this Regulation, and either were not aware of its existence, or have actively distanced themselves from it before the Commission opened proceedings under Article 20.

The financial liability of each undertaking in respect of the payment of the fine shall not exceed 20 % of its total worldwide turnover in the preceding financial year.

Article 31

Periodic penalty payments

1. The Commission may adopt a decision imposing on undertakings, including gatekeepers where applicable, and associations of undertakings periodic penalty payments not exceeding 5 % of the average daily worldwide turnover in the preceding financial year per day, calculated from the date set by that decision, in order to compel them:

(a)	to comply with the measures specified by the Commission in a decision adopted pursuant to Article 8(2);

(b)	to comply with the decision pursuant to Article 18(1);

(c)	to supply correct and complete information within the time limit required by a request for information made by decision pursuant to Article 21;

(d)	to ensure access to data, algorithms and information about testing in response to a request made pursuant to Article 21(3) and to supply explanations on those as required by a decision pursuant to Article 21;

(e)	to submit to an inspection which was ordered by a decision taken pursuant to Article 23;

(f)	to comply with a decision ordering interim measures taken pursuant to Article 24;

(g)	to comply with commitments made legally binding by a decision pursuant to Article 25(1);

(h)	to comply with a decision pursuant to Article 29(1).

2. Where the undertakings, or associations of undertakings, have satisfied the obligation which the periodic penalty payment was intended to enforce, the Commission may adopt an implementing act, setting the definitive amount of the periodic penalty payment at a figure lower than that which would arise under the original decision. That implementing act shall be adopted in accordance with the advisory procedure referred to in Article 50(2).

Article 32

Limitation periods for the imposition of penalties

1. The powers conferred on the Commission by Articles 30 and 31 shall be subject to a 5 year limitation period.

2. Time shall begin to run on the day on which the infringement is committed. However, in the case of continuing or repeated infringements, time shall begin to run on the day on which the infringement ceases.

3. Any action taken by the Commission for the purpose of a market investigation or proceedings in respect of an infringement shall interrupt the limitation period for the imposition of fines or periodic penalty payments. The limitation period shall be interrupted with effect from the date on which the action is notified to at least one undertaking or association of undertakings which has participated in the infringement. Actions which interrupt the running of the period shall include in particular the following:

(a)	requests for information by the Commission;

(b)	written authorisations to conduct inspections issued to its officials by the Commission;

(c)	the opening of a proceeding by the Commission pursuant to Article 20.

4. Each interruption shall start time running afresh. However, the limitation period shall expire at the latest on the day on which a period equal to twice the limitation period has elapsed without the Commission having imposed a fine or a periodic penalty payment. That period shall be extended by the time during which limitation is suspended pursuant to paragraph 5.

5. The limitation period for the imposition of fines or periodic penalty payments shall be suspended for as long as the decision of the Commission is the subject of proceedings pending before the Court of Justice.

Article 34

Right to be heard and access to the file

1. Before adopting a decision pursuant to Article 8, Article 9(1), Article 10(1), Articles 17, 18, 24, 25, 29 and 30 and Article 31(2), the Commission shall give the gatekeeper or undertaking or association of undertakings concerned the opportunity of being heard on:

(a)	preliminary findings of the Commission, including any matter to which the Commission has taken objection; and

(b)	measures that the Commission may intend to take in view of the preliminary findings pursuant to point (a) of this paragraph.

2. Gatekeepers, undertakings and associations of undertakings concerned may submit their observations to the Commission concerning the Commission’s preliminary findings within a time limit set by the Commission in its preliminary findings which may not be less than 14 days.

3. The Commission shall base its decisions only on preliminary findings, including any matter to which the Commission has taken objection, on which gatekeepers, undertakings and associations of undertakings concerned have been able to comment.

4. The rights of defence of the gatekeeper, undertaking or association of undertakings concerned shall be fully respected in any proceedings. The gatekeeper, undertaking or association of undertakings concerned shall be entitled to have access to the Commission's file under terms of disclosure, subject to the legitimate interest of undertakings in the protection of their business secrets. In the case of disagreement between the parties, the Commission may adopt decisions setting out those terms of disclosure. The right of access to the file of the Commission shall not extend to confidential information and internal documents of the Commission or the competent authorities of the Member States. In particular, the right of access shall not extend to correspondence between the Commission and the competent authorities of the Member States. Nothing in this paragraph shall prevent the Commission from disclosing and using information necessary to prove an infringement.

Article 54

Entry into force and application

This Regulation shall enter into force on the twentieth day following that of its publication in the Official Journal of the European Union.

It shall apply from 2 May 2023.

However, Article 3(6) and (7) and Articles 40, 46, 47, 48, 49 and 50 shall apply from 1 November 2022 and Article 42 and Article 43 shall apply from 25 June 2023.

Nevertheless, if the date of 25 June 2023 precedes the date of application referred to in the second paragraph of this Article, the application of Article 42 and Article 43 shall be postponed until the date of application referred to in the second paragraph of this Article.

This Regulation shall be binding in its entirety and directly applicable in all Member States.

Done at Strasbourg, 14 September 2022.

For the European Parliament

The President

R. METSOLA

For the Council

The President

M. BEK

(1) OJ C 286, 16.7.2021, p. 64.

(2) OJ C 440, 29.10.2021, p. 67.

(3) Position of the European Parliament of 5 July 2022 (not yet published in the Official Journal) and decision of the Council of 18 July 2022.

(4) Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC ( General Data Protection Regulation) (OJ L 119, 4.5.2016, p. 1).

(5) Regulation (EU) 2019/1150 of the European Parliament and of the Council of 20 June 2019 on promoting fairness and transparency for business_users of online_intermediation_services (OJ L 186, 11.7.2019, p. 57).

(6) Directive 2002/58/EC of the European Parliament and of the Council of 12 July 2002 concerning the processing of personal data and the protection of privacy in the electronic communications sector (OJ L 201, 31.7.2002, p. 37).

(7) Directive 2005/29/EC of the European Parliament and of the Council of 11 May 2005 concerning unfair business-to-consumer commercial practices in the internal market and amending Council Directive 84/450/EEC, Directives 97/7/EC, 98/27/EC and 2002/65/EC of the European Parliament and of the Council and Regulation (EC) No 2006/2004 of the European Parliament and of the Council (‘Unfair Commercial Practices Directive’) (OJ L 149, 11.6.2005, p. 22).

(8) Directive 2010/13/EU of the European Parliament and of the Council of 10 March 2010 on the coordination of certain provisions laid down by law, regulation or administrative action in Member States concerning the provision of audiovisual media services (Audiovisual Media Services Directive) (OJ L 95, 15.4.2010, p. 1).

(9) Directive (EU) 2015/2366 of the European Parliament and of the Council of 25 November 2015 on payment_services in the internal market, amending Directives 2002/65/EC, 2009/110/EC and 2013/36/EU and Regulation (EU) No 1093/2010, and repealing Directive 2007/64/EC (OJ L 337, 23.12.2015, p. 35).

(10) Directive (EU) 2019/790 of the European Parliament and of the Council of 17 April 2019 on copyright and related rights in the Digital Single Market and amending Directives 96/9/EC and 2001/29/EC (OJ L 130, 17.5.2019, p. 92).

(11) Directive (EU) 2019/882 of the European Parliament and of the Council of 17 April 2019 on the accessibility requirements for products and services (OJ L 151, 7.6.2019, p. 70).

(12) Council Directive 93/13/EEC of 5 April 1993 on unfair terms in consumer contracts (OJ L 95, 21.4.1993, p. 29).

(13) Directive (EU) 2015/1535 of the European Parliament and of the Council of 9 September 2015 laying down a procedure for the provision of information in the field of technical regulations and of rules on Information Society services (OJ L 241, 17.9.2015, p. 1).

(14) Directive (EU) 2018/1972 of the European Parliament and of the Council of 11 December 2018 establishing the European Electronic Communications Code (OJ L 321, 17.12.2018, p. 36).

(15) Directive (EU) 2016/2102 of the European Parliament and of the Council of 26 October 2016 on the accessibility of the websites and mobile applications of public sector bodies (OJ L 327, 2.12.2016, p. 1).

(16) Regulation (EU) No 182/2011 of the European Parliament and of the Council of 16 February 2011 laying down the rules and general principles concerning mechanisms for control by the Member States of the Commission's exercise of implementing powers (OJ L 55, 28.2.2011, p. 13).

(17) Regulation (EU) 2018/1725 of the European Parliament and of the Council of 23 October 2018 on the protection of natural persons with regard to the processing of personal data by the Union institutions, bodies, offices and agencies and on the free movement of such data, and repealing Regulation (EC) No 45/2001 and Decision No 1247/2002/EC (OJ L 295, 21.11.2018, p. 39).

(18) Council Regulation (EC) No 1/2003 of 16 December 2002 on the implementation of the rules on competition laid down in Articles 81 and 82 of the Treaty (OJ L 1, 4.1.2003, p. 1).

(19) OJ L 123, 12.5.2016, p. 1.

(20) Directive (EU) 2019/1937 of the European Parliament and of the Council of 23 October 2019 on the protection of persons who report breaches of Union law (OJ L 305, 26.11.2019, p. 17).

(21) Directive (EU) 2020/1828 of the European Parliament and of the Council of 25 November 2020 on representative actions for the protection of the collective interests of consumers and repealing Directive 2009/22/EC (OJ L 409, 4.12.2020, p. 1).

(22) OJ C 147, 26.4.2021, p. 4.

(23) Council Regulation (EC) No 139/2004 of 20 January 2004 on the control of concentrations between undertakings (the EC Merger Regulation) (OJ L 24, 29.1.2004, p. 1).

(24) Directive (EU) 2016/1148 of the European Parliament and of the Council of 6 July 2016 concerning measures for a high common level of security of network and information systems across the Union (OJ L 194, 19.7.2016, p. 1).

ANNEX

A. ‘ General’

This Annex aims at specifying the methodology for identifying and calculating the ‘active end_users’ and the ‘active business_users’ for each core_platform_service listed in Article 2, point (2). It provides a reference to enable an undertaking to assess whether its core_platform_services meet the quantitative thresholds set out in Article 3(2), point (b) and would therefore be presumed to meet the requirement in Article 3(1), point (b). Such reference will therefore equally be of relevance to any broader assessment under Article 3(8). It is the responsibility of the undertaking to come to the best approximation possible in line with the common principles and specific methodology set out in this Annex. Nothing in this Annex precludes the Commission, within the time limits laid down in the relevant provisions of this Regulation, from requiring the undertaking providing core_platform_services to provide any information necessary to identify and calculate the ‘active end_users’ and the ‘active business_users’. Nothing in this Annex should constitute a legal basis for tracking users. The methodology contained in this Annex is also without prejudice to any of the obligations laid down in this Regulation, notably in Article 3(3) and (8) and Article 13(3). In particular, the required compliance with Article 13(3) also means identifying and calculating ‘active end_users’ and ‘active business_users’ based either on a precise measurement or on the best approximation available, in line with the actual identification and calculation capacities that the undertaking providing core_platform_services possesses at the relevant point in time. Those measurements or the best approximation available shall be consistent with, and include, those reported under Article 15.

Article 2, points (20) and (21) set out the definitions of ‘ end_user’ and ‘ business_user’, which are common to all core_platform_services.

In order to identify and calculate the number of ‘active end_users’ and ‘active business_users’, this Annex refers to the concept of ‘unique users’. The concept of ‘unique users’ encompasses ‘active end_users’ and ‘active business_users’ counted only once, for the relevant core_platform_service, over the course of a specified time period (i.e. month in case of ‘active end_users’ and year in case of ‘active business_users’), no matter how many times they engaged with the relevant core_platform_service over that period. This is without prejudice to the fact that the same natural or legal person can simultaneously constitute an ‘active end_user’ or an ‘active business_user’ for different core_platform_services.

B. ‘Active end_users’

The number of ‘unique users’ as regards ‘active end_users’ shall be identified according to the most accurate metric reported by the undertaking providing any of the core_platform_services, specifically:

It is considered that collecting data about the use of core_platform_services from signed-in or logged-in environments would prima facie present the lowest risk of duplication, for example in relation to user behaviour across devices or platforms. Hence, the undertaking shall submit aggregate anonymized data on the number of unique end_users per respective core_platform_service based on signed-in or logged-in environments, if such data exists.

In the case of core_platform_services which are also accessed by end_users outside signed-in or logged-in environments, the undertaking shall additionally submit aggregate anonymized data on the number of unique end_users of the respective core_platform_service based on an alternate metric capturing also end_users outside signed-in or logged-in environments, such as internet protocol addresses, cookie identifiers or other identifiers such as radio frequency identification tags, provided that those addresses or identifiers are objectively necessary for the provision of the core_platform_services.

The number of ‘monthly active end_users’ is based on the average number of monthly active end_users throughout the largest part of the financial year. The notion ‘the largest part of the financial year’ is intended to allow an undertaking providing core_platform_services to discount outlier figures in a given year. Outlier figures inherently mean figures that fall significantly outside the normal and foreseeable figures. An unforeseen peak or drop in user engagement that occurred during a single month of the financial year is an example of what could constitute such outlier figures. Figures related to annually recurring occurrences, such as annual sales promotions, are not outlier figures.

C. ‘Active business_users’

The number of ‘unique users’ as regards ‘active business_users’ is to be determined, where applicable, at the account level with each distinct business account associated with the use of a core_platform_service provided by the undertaking constituting one unique business_user of that respective core_platform_service. If the notion of ‘business account’ does not apply to a given core_platform_service, the relevant undertaking providing core_platform_services shall determine the number of unique business_users by referring to the relevant undertaking.

D. ‘ Submission_of_information’

The undertaking submitting to the Commission pursuant to Article 3(3) information concerning the number of active end_users and active business_users per core_platform_service shall be responsible for ensuring the completeness and accuracy of that information. In that regard:

a.	The undertaking shall be responsible for submitting data for a respective core_platform_service that avoids under-counting and over-counting the number of active end_users and active business_users (for example, where users access the core_platform_services across different platforms or devices).

The undertaking shall be responsible for providing precise and succinct explanations about the methodology used to arrive at the information and for any risk of under-counting or over-counting of the number of active end_users and active business_users for a respective core_platform_service and for the solutions adopted to address that risk.

c.	The undertaking shall provide data that is based on an alternative metric when the Commission has concerns about the accuracy of data provided by the undertaking providing core_platform_services.

For the purpose of calculating the number of ‘active end_users’ and ‘active business_users’:

The undertaking providing core_platform_service(s) shall not identify core_platform_services that belong to the same category of core_platform_services pursuant to Article 2, point (2) as distinct mainly on the basis that they are provided using different domain names, whether country code top-level domains (ccTLDs) or generic top-level domains (gTLDs), or any geographic attributes.

The undertaking providing core_platform_service(s) shall consider as distinct core_platform_services those core_platform_services, which are used for different purposes by either their end_users or their business_users, or both, even if their end_users or business_users may be the same and even if they belong to the same category of core_platform_services pursuant to Article 2, point (2).

The undertaking providing core_platform_service(s) shall consider as distinct core_platform_services those services which the relevant undertaking offers in an integrated way, but which:

(i)	do not belong to the same category of core_platform_services pursuant to Article 2, point (2); or

(ii)	are used for different purposes by either their end_users or their business_users, or both, even if their end_users and business_users may be the same and even if they belong to the same category of core_platform_services pursuant to Article 2, point (2).

E. ‘ Specific_definitions’

The table below sets out specific definitions of ‘active end_users’ and ‘active business_users’ for each core_platform_service.

Core platform services	Active end_users	Active business_users
Online intermediation services	Number of unique end_users who engaged with the online intermediation service at least once in the month for example through actively logging-in, making a query, clicking or scrolling or concluded a transaction through the online intermediation service at least once in the month.	Number of unique business_users who had at least one item listed in the online intermediation service during the whole year or concluded a transaction enabled by the online intermediation service during the year.
Online search engines	Number of unique end_users who engaged with the online_search_engine at least once in the month, for example through making a query.	Number of unique business_users with business websites (i.e. website used in commercial or professional capacity) indexed by or part of the index of the online_search_engine during the year.
Online social networking services	Number of unique end_users who engaged with the online_social_networking_service at least once in the month, for example through actively logging-in, opening a page, scrolling, clicking, liking, making a query, posting or commenting.	Number of unique business_users who have a business listing or business account in the online_social_networking_service and have engaged in any way with the service at least once during the year, for example through actively logging-in, opening a page, scrolling, clicking, liking, making a query, posting, commenting or using its tools for businesses.
Video-sharing platform services	Number of unique end_users who engaged with the video-sharing_platform_service at least once in the month, for example through playing a segment of audiovisual content, making a query or uploading a piece of audiovisual content, notably including user-generated videos.	Number of unique business_users who provided at least one piece of audiovisual content uploaded or played on the video-sharing_platform_service during the year.
Number-independent interpersonal communication services	Number of unique end_users who initiated or participated in any way in a communication through the number-independent interpersonal communication service at least once in the month.	Number of unique business_users who used a business account or otherwise initiated or participated in any way in a communication through the number-independent interpersonal communication service to communicate directly with an end_user at least once during the year.
Operating systems	Number of unique end_users who utilised a device with the operating_system, which has been activated, updated or used at least once in the month.	Number of unique developers who published, updated or offered at least one software_application or software program using the programming language or any software development tools of, or running in any way on, the operating_system during the year.
Virtual assistant	Number of unique end_users who engaged with the virtual_assistant in any way at least once in the month, such as for example through activating it, asking a question, accessing a service through a command or controlling a smart home device.	Number of unique developers who offered at least one virtual_assistant software_application or a functionality to make an existing software_application accessible through the virtual_assistant during the year.
Web browsers	Number of unique end_users who engaged with the web_browser at least once in the month, for example through inserting a query or website address in the URL line of the web_browser.	Number of unique business_users whose business websites (i.e. website used in commercial or professional capacity) have been accessed via the web_browser at least once during the year or who offered a plug-in, extension or add-ons used on the web_browser during the year.
Cloud computing services	Number of unique end_users who engaged with any cloud_computing_services from the relevant provider of cloud_computing_services at least once in the month, in return for any type of remuneration, regardless of whether this remuneration occurs in the same month.	Number of unique business_users who provided any cloud_computing_services hosted in the cloud infrastructure of the relevant provider of cloud_computing_services during the year.
Online advertising services	For proprietary sales of advertising space: Number of unique end_users who were exposed to an advertisement impression at least once in the month. For advertising intermediation services (including advertising networks, advertising exchanges and any other advertising intermediation services): Number of unique end_users who were exposed to an advertisement impression which triggered the advertising intermediation service at least once in the month.	For proprietary sales of advertising space: Number of unique advertisers who had at least one advertisement impression displayed during the year. For advertising intermediation services (including advertising networks, advertising exchanges and any other advertising intermediation services): Number of unique business_users (including advertisers, publishers or other intermediators) who interacted via or were served by the advertising intermediation service during the year.

whereas

keyboard_tab Digital Market Act 2022/1925 EN

Digital Market Act 2022/1925 EN