keyboard_tab Digital Service Act 2022/2065 EN
BG CS DA DE EL EN ES ET FI FR GA HR HU IT LV LT MT NL PL PT RO SK SL SV print pdf
- Art. 1 Subject matter
- Art. 2 Scope
- Art. 3 Definitions
- Art. 4 ‘Mere conduit’
- Art. 5 ‘Caching’
- Art. 6 Hosting
- Art. 7 Voluntary own-initiative investigations and legal compliance
- Art. 8 No general monitoring or active fact-finding obligations
- Art. 9 Orders to act against illegal content
- Art. 10 Orders to provide information
- Art. 11 Points of contact for Member States’ authorities, the Commission and the Board
- Art. 12 Points of contact for recipients of the service
- Art. 13 Legal representatives
- Art. 14 Terms and conditions
- Art. 15 Transparency reporting obligations for providers of intermediary services
- Art. 16 Notice and action mechanisms
- Art. 17 Statement of reasons
- Art. 18 Notification of suspicions of criminal offences
- Art. 19 Exclusion for micro and small enterprises
- Art. 20 Internal complaint-handling system
- Art. 21 Out-of-court dispute settlement
- Art. 22 Trusted flaggers
- Art. 23 Measures and protection against misuse
- Art. 24 Transparency reporting obligations for providers of online platforms
- Art. 25 Online interface design and organisation
- Art. 26 Advertising on online platforms
- Art. 27 Recommender system transparency
- Art. 28 Online protection of minors
- Art. 29 Exclusion for micro and small enterprises
- Art. 30 Traceability of traders
- Art. 31 Compliance by design
- Art. 32 Right to information
- Art. 33 Very large online platforms and very large online search engines
- Art. 34 Risk assessment
- Art. 35 Mitigation of risks
- Art. 36 Crisis response mechanism
- Art. 37 Independent audit
- Art. 38 Recommender systems
- Art. 39 Additional online advertising transparency
- Art. 40 Data access and scrutiny
- Art. 41 Compliance function
- Art. 42 Transparency reporting obligations
- Art. 43 Supervisory fee
- Art. 44 Standards
- Art. 45 Codes of conduct
- Art. 46 Codes of conduct for online advertising
- Art. 47 Codes of conduct for accessibility
- Art. 48 Crisis protocols
- Art. 49 Competent authorities and Digital Services Coordinators
- Art. 50 Requirements for Digital Services Coordinators
- Art. 51 Powers of Digital Services Coordinators
- Art. 52 Penalties
- Art. 53 Right to lodge a complaint
- Art. 54 Compensation
- Art. 55 Activity reports
- Art. 56 Competences
- Art. 57 Mutual assistance
- Art. 58 Cross-border cooperation among Digital Services Coordinators
- Art. 59 Referral to the Commission
- Art. 60 Joint investigations
- Art. 61 European Board for Digital Services
- Art. 62 Structure of the Board
- Art. 63 Tasks of the Board
- Art. 64 Development of expertise and capabilities
- Art. 65 Enforcement of obligations of providers of very large online platforms and of very large online search engines
- Art. 66 Initiation of proceedings by the Commission and cooperation in investigation
- Art. 67 Requests for information
- Art. 68 Power to take interviews and statements
- Art. 69 Power to conduct inspections
- Art. 70 Interim measures
- Art. 71 Commitments
- Art. 72 Monitoring actions
- Art. 73 Non-compliance
- Art. 74 Fines
- Art. 75 Enhanced supervision of remedies to address infringements of obligations laid down in Section 5 of Chapter III
- Art. 76 Periodic penalty payments
- Art. 77 Limitation period for the imposition of penalties
- Art. 78 Limitation period for the enforcement of penalties
- Art. 79 Right to be heard and access to the file
- Art. 80 Publication of decisions
- Art. 81 Review by the Court of Justice of the European Union
- Art. 82 Requests for access restrictions and cooperation with national courts
- Art. 83 Implementing acts relating to Commission intervention
- Art. 84 Professional secrecy
- Art. 85 Information sharing system
- Art. 86 Representation
- Art. 87 Exercise of the delegation
- Art. 88 Committee procedure
- Art. 89 Amendments to Directive 2000/31/EC
- Art. 90 Amendment to Directive (EU) 2020/1828
- Art. 91 Review
- Art. 92 Anticipated application to providers of very large online platforms and of very large online search engines
- Article 93 Entry into force and application
CHAPTER I
GENERAL PROVISIONS
CHAPTER II
LIABILITY OF PROVIDERS OF INTERMEDIARY SERVICES
CHAPTER III
DUE DILIGENCE OBLIGATIONS FOR A TRANSPARENT AND SAFE ONLINE ENVIRONMENT
SECTION 1
Provisions applicable to all providers of intermediary services
SECTION 2
Additional provisions applicable to providers of hosting services, including online platforms
SECTION 3
Additional provisions applicable to providers of online platforms
SECTION 4
Additional provisions applicable to providers of online platforms allowing consumers to conclude distance contracts with traders
SECTION 5
Additional obligations for providers of very large online platforms and of very large online search engines to manage systemic risks
SECTION 6
Other provisions concerning due diligence obligations
CHAPTER IV
IMPLEMENTATION, COOPERATION, PENALTIES AND ENFORCEMENT
SECTION 1
Competent authorities and national Digital Services Coordinators
SECTION 2
Competences, coordinated investigation and consistency mechanisms
SECTION 3
European Board for Digital Services
SECTION 4
Supervision, investigation, enforcement and monitoring in respect of providers of very large online platforms and of very large online search engines
SECTION 5
Common provisions on enforcement
SECTION 6
Delegated and implementing acts
CHAPTER V
FINAL PROVISIONS
- information society service
- recipient of the service
- consumer
- to offer services in the Union
- substantial connection to the Union
- trader
- intermediary service
- mere conduit
- caching
- hosting
- illegal content
- online platform
- online search engine
- dissemination to the public
- distance contract
- online interface
- Digital Services Coordinator of establishment
- Digital Services Coordinator of destination
- active recipient of an online platform
- active recipient of an online search engine
- advertisement
- recommender system
- content moderation
- terms and conditions
- persons with disabilities
- commercial communication
- turnover
- Mere conduit
- Caching
- audit 24
- very 20
- large 20
- shall 15
- audits 10
- report 8
- provider 8
- have 7
- pursuant 7
- online_platforms 6
- online_search_engines 6
- them 5
- article 5
- they 5
- necessary 5
- referred 5
- from 5
- recommendations 4
- online_platform 4
- online_search_engine 4
- measures 4
- organisations 4
- providers 4
- period 4
- concerned 3
- audited 3
- performed 3
- opinion 3
- ‘positive’ 3
- implementation 3
- operational 3
- particular 3
- performance 3
- legal 3
- connected 3
- person 3
- specific 3
- subject 3
- performing 3
- address 3
- auditing 3
- compliance 3
- independent 3
- take 3
- services 3
- elements 3
- proven 2
- reasons 2
- information 2
- third 2
Article 37
Independent audit
1. Providers of very large online_platforms and of very large online_search_engines shall be subject, at their own expense and at least once a year, to independent audits to assess compliance with the following:
(a) | the obligations set out in Chapter III; |
(b) | any commitments undertaken pursuant to the codes of conduct referred to in Articles 45 and 46 and the crisis protocols referred to in Article 48. |
2. Providers of very large online_platforms and of very large online_search_engines shall afford the organisations carrying out the audits pursuant to this Article the cooperation and assistance necessary to enable them to conduct those audits in an effective, efficient and timely manner, including by giving them access to all relevant data and premises and by answering oral or written questions. They shall refrain from hampering, unduly influencing or undermining the performance of the audit.
Such audits shall ensure an adequate level of confidentiality and professional secrecy in respect of the information obtained from the providers of very large online_platforms and of very large online_search_engines and third parties in the context of the audits, including after the termination of the audits. However, complying with that requirement shall not adversely affect the performance of the audits and other provisions of this Regulation, in particular those on transparency, supervision and enforcement. Where necessary for the purpose of the transparency reporting pursuant to Article 42(4), the audit report and the audit implementation report referred to in paragraphs 4 and 6 of this Article shall be accompanied with versions that do not contain any information that could reasonably be considered to be confidential.
3. Audits performed pursuant to paragraph 1 shall be performed by organisations which:
(a) | are independent from, and do not have any conflicts of interest with, the provider of very large online_platforms or of very large online_search_engines concerned and any legal person connected to that provider; in particular:
|
(b) | have proven expertise in the area of risk management, technical competence and capabilities; |
(c) | have proven objectivity and professional ethics, based in particular on adherence to codes of practice or appropriate standards. |
4. Providers of very large online_platforms and of very large online_search_engines shall ensure that the organisations that perform the audits establish an audit report for each audit. That report shall be substantiated, in writing, and shall include at least the following:
(a) | the name, address and the point of contact of the provider of the very large online_platform or of the very large online_search_engine subject to the audit and the period covered; |
(b) | the name and address of the organisation or organisations performing the audit; |
(c) | a declaration of interests; |
(d) | a description of the specific elements audited, and the methodology applied; |
(e) | a description and a summary of the main findings drawn from the audit; |
(f) | a list of the third parties consulted as part of the audit; |
(g) | an audit opinion on whether the provider of the very large online_platform or of the very large online_search_engine subject to the audit complied with the obligations and with the commitments referred to in paragraph 1, namely ‘positive’, ‘positive with comments’ or ‘negative’; |
(h) | where the audit opinion is not ‘positive’, operational recommendations on specific measures to achieve compliance and the recommended timeframe to achieve compliance. |
5. Where the organisation performing the audit was unable to audit certain specific elements or to express an audit opinion based on its investigations, the audit report shall include an explanation of the circumstances and the reasons why those elements could not be audited.
6. Providers of very large online_platforms or of very large online_search_engines receiving an audit report that is not ‘positive’ shall take due account of the operational recommendations addressed to them with a view to take the necessary measures to implement them. They shall, within one month from receiving those recommendations, adopt an audit implementation report setting out those measures. Where they do not implement the operational recommendations, they shall justify in the audit implementation report the reasons for not doing so and set out any alternative measures that they have taken to address any instances of non-compliance identified.
7. The Commission is empowered to adopt delegated acts in accordance with Article 87 to supplement this Regulation by laying down the necessary rules for the performance of the audits pursuant to this Article, in particular as regards the necessary rules on the procedural steps, auditing methodologies and reporting templates for the audits performed pursuant to this Article. Those delegated acts shall take into account any voluntary auditing standards referred to in Article 44(1), point (e).
whereas