Does ESPR Apply to Non-EU Companies? A Supply Chain Compliance Guide

If your products are manufactured outside the EU but sold inside it, ESPR applies to you. Full stop. The regulation draws no distinction between a factory in Stuttgart and one in Shenzhen, Dhaka, or São Paulo. What matters is where the product lands - the EU market - not where it was made.
This guide cuts through the confusion about who owes what under Regulation (EU) 2024/1781, focusing on the supply chain mechanics that compliance, legal, and procurement teams need to understand before their product category's delegated act arrives.
The Core Rule: Market Access, Not Manufacturing Location
ESPR applies to any economic operator placing a physical product on the EU market, regardless of where it was manufactured. That scope covers EU manufacturers, non-EU manufacturers exporting to the EU, EU importers, and distributors. The European Commission's own Impact Assessment states that requirements "apply in a non-discriminatory manner to EU and non-EU companies" - meaning a Vietnamese furniture producer and a German one face identical obligations once the furniture delegated act is in force.
The regulation is also directly applicable across all 27 Member States without transposition into national law, which eliminates the inconsistencies that plagued the old Ecodesign Directive.
ESPR obligations for a specific product category only become binding once the Commission adopts the relevant delegated act for that category. The framework is in force now; the product-specific clock starts when the delegated act is published. The first ESPR Working Plan (2025–2030), adopted 16 April 2025, prioritises iron and steel (2026), textiles (2027), and furniture (2028).
The Four Economic Operator Roles - and What Each Owes
ESPR structures compliance around four roles. The legal obligations differ by role, but the practical compliance burden falls heavily on the manufacturer regardless of where it is located.
| Role | Primary Obligation | DPP Responsibility | Liability Exposure |
|---|---|---|---|
| EU Manufacturer | Full compliance: performance requirements, technical documentation, conformity assessment, CE marking | Creates and registers the DPP before market placement | Primary — directly liable to market surveillance authorities |
| Non-EU Manufacturer | Same practical obligations as EU manufacturer; must operate through an EU authorised representative | Must supply all DPP data; the AR or importer holds formal registration duty | Primary — liable even when an AR is appointed |
| EU Importer | Verify manufacturer compliance before placing products on the market; ensure DPP, CE marking, and documentation are present | Bears DPP obligation when no compliant AR is in place; retains verification duty even when AR exists | Treated as manufacturer if non-EU producer cannot demonstrate compliance |
| Distributor | Act with due care; check markings, DPP, and documentation are present; halt sales of non-compliant products | Must verify a compliant DPP exists before making product available | Lighter — but faces enforcement action if it continues selling after notification of non-compliance |
Non-EU Manufacturers: Same Obligations, Extra Step
Non-EU manufacturers exporting to the EU bear the same practical obligations as EU manufacturers - they must meet product performance requirements, compile technical documentation, carry out conformity assessments, and create the Digital Product Passport. The extra step is the EU presence requirement.
Non-EU manufacturers who do not have a legal entity within the EU must appoint an Authorised Representative established in the EU. Alternatively, establishing an EU subsidiary achieves the same result and gives the manufacturer direct control over the compliance process.
The critical nuance: appointing an authorised representative does not transfer the substantive compliance work. The AR assumes legal responsibility for specified tasks - holding documentation, liaising with market surveillance authorities, cooperating on corrective actions - but cannot generate compliance evidence. Only the manufacturer can create the technical documentation, run the conformity assessment, and supply the DPP data. Composition data, lifecycle information, substances of concern, and repair instructions all live inside the manufacturer's own systems.
The AR limitation is structural, not contractual. Article 15 of ESPR explicitly states that drawing up technical documentation and carrying out conformity assessments cannot form part of the authorised representative's mandate. No matter how the mandate is worded, these tasks remain with the manufacturer. An AR who cannot get accurate data from the manufacturer cannot produce a compliant DPP.
Authorised Representatives: What the Mandate Covers
Under ESPR, an authorised representative is a natural or legal person established in the EU, mandated in writing by the manufacturer to act on their behalf for specified tasks. The written mandate is a formal legal document - it must be available for inspection by national authorities.
At minimum, the mandate covers:
- Holding documentation - keeping the EU Declaration of Conformity and technical documentation accessible to market surveillance authorities on request.
- Providing information to authorities - supplying all information and documentation needed to demonstrate compliance within 15 days of a request.
- Cooperating on corrective actions - assisting with recalls, withdrawals, or other measures if non-conforming products are identified.
- Serving as the EU contact point - acting as the primary regulatory interface between the non-EU manufacturer and EU authorities.
What the mandate cannot cover: drawing up technical documentation, performing conformity assessments, or generating DPP data. These remain the manufacturer's exclusive responsibility.
Importers: Gatekeepers With Real Liability
EU importers occupy a pivotal position in the ESPR compliance chain. They must verify that non-EU manufacturers have met their ESPR obligations before placing products on the EU market. That verification duty is not discharged by receiving a supplier's assurance - importers must check that the DPP is genuinely compliant: correct data fields, valid registration in the EU DPP Registry, and a working data carrier on the physical product.
The liability consequence is stark. Importers who place non-compliant products on the market are liable as if they were the manufacturer. And when the manufacturer is not established in the EU and has no authorised representative, the ESPR compliance obligations - including those tied to the Digital Product Passport - transfer to the importer directly.
Even when a non-EU manufacturer has appointed an AR, importers retain a verification duty. If the supplier provides the AR with inaccurate data, the AR produces a non-compliant DPP, and the importer places the product on the market relying on that passport, each actor in the chain can be held accountable. You cannot contract your way out of market surveillance liability.
Distributors: Lighter Duties, Still Enforceable
Distributors carry a lighter but still enforceable set of obligations. Before making a product available, they must verify that required markings (CE or alternatives), the DPP, and all required documentation are present. If a product is found to be non-compliant, distributors must immediately halt sales and notify the relevant authorities in the affected Member States.
Distributors who continue selling products after notification of non-compliance face enforcement action. The due-care standard means ignorance is not a defence once a compliance issue has been flagged.
The DPP Data Problem: Why Contracts Matter
The Digital Product Passport is where the supply chain tension becomes most acute. Neither importers nor authorised representatives typically have access to the volume and granularity of product data a DPP requires. Composition data, lifecycle information, substances of concern, repair instructions - this information lives inside the manufacturer's own systems.
This creates a practical dependency that must be managed contractually. Importers and brands sourcing from non-EU manufacturers should build data-delivery obligations into their purchase agreements now, before delegated acts make them urgent. Key clauses to consider:
- Data delivery timelines - when the manufacturer must supply DPP-ready data relative to production milestones.
- Data accuracy warranties - manufacturer representations that composition and compliance data is correct and complete.
- Update obligations - manufacturer duty to notify and supply updated data when material composition, substances of concern, or repair availability changes.
- Audit rights - importer right to verify the underlying data against the manufacturer's technical documentation.
- Liability allocation - clear agreement on who bears the cost of non-compliance if inaccurate data leads to a defective DPP.
Non-EU manufacturers who cannot supply this data risk losing EU market access when their product category's delegated act enters into force.
Choosing Your Compliance Structure: Three Paths
Practical Action List
Regardless of your role in the supply chain, the following steps apply now - before your product category's delegated act is published:
For non-EU manufacturers:
- Determine whether you have or need an EU legal entity or authorised representative.
- Begin compiling the technical documentation that will underpin both conformity assessment and DPP data.
- Engage your EU importers or distributors to align on who will hold formal compliance responsibility and what data you will supply.
- Build DPP data infrastructure - material composition, substances of concern, repair information - into your product management systems now.
For EU importers:
- Audit your non-EU supplier base for ESPR readiness, particularly for priority categories (textiles, furniture, steel, electronics).
- Insert data-delivery and accuracy clauses into purchase agreements before the next order cycle.
- Decide early whether to rely on the manufacturer's AR or to accept importer liability - and document that decision.
- Verify, do not assume: even when a supplier has an AR, your verification duty remains.
For distributors:
- Establish a pre-distribution check for DPP presence, CE marking, and required documentation.
- Create a process for halting sales and notifying authorities if non-compliance is identified.
- Keep complaint records for at least five years.
The geography of your factory is irrelevant to ESPR. The geography of your market is everything. Any product placed on the EU market must meet the same requirements - and the economic operator who places it there bears the consequences if it does not. The compliance structure you choose (EU entity, authorised representative, or importer liability) determines who carries that risk. Choose deliberately, document it contractually, and start building the data infrastructure before the delegated act for your category removes the option to prepare at pace.
Related reading

Digital Product Passport for Textiles: The Compliance Guide for Fashion Brands
The EU's ESPR mandates a Digital Product Passport for textiles. Here's what fashion brands and compliance leads need to know about scope, timeline, data fields, and how to prepare now.

Substances of Concern in the Digital Product Passport: What ESPR's Widened Definition Means for Your Supply Chain
ESPR's substances of concern definition goes well beyond REACH SVHCs. Here's exactly what the DPP must disclose, why the scope is wider than you think, and what supply-chain data you need to collect now.

EU Right to Repair Directive: What Manufacturers Must Have in Place by 31 July 2026
Directive (EU) 2024/1799 takes effect 31 July 2026. Here's how it interlocks with ESPR's repairability rules - and the concrete steps manufacturers must complete before the deadline.