Skip to content

Understanding Participants, Roles and Layers in Data Spaces

Data spaces are multi-layered data ecosystems that rely on the seamless integration of technical protocols & components, business processes, and legal frameworks. One of the foundational challenges in governing data spaces lies in the consistent definition and use of key concepts such as "roles," "policies," and "contracts." These terms often carry different meanings in different layers and across domains. This chapter establishes a clear separation between technical and non-technical interpretations of such concepts to support the development of interoperable data spaces.

Layers of a Data Space

Data spaces can be structured into three primary layers, each serving distinct functions:

Technical Layer

Encompasses the architecture and protocols (e.g., Dataspace Protocol (DSP), Decentralized Claims Protocol (DCP)) that facilitate trusted and interoperable data sharing. Software agents, representing the participants of the data space, form a decentralized mesh of autonomous nodes.

Economic Layer

Manages the services, interactions, and workflows that enable value generation. Alternative terms for this layer are also Business or Operational Layer.

Legislative Layer

Enforces rights, obligations, and regulatory compliance across participants. Alternative term for this layer is Regulatory Layer.

While at the technical layer all participants are equal the layers building on top can lead to segmentation into individual communities as described in the chapter What is a Data Space - Communities

Layers of Data Spaces

These layers interact but must be conceptually separated to ensure clarity and reduce ambiguity in roles and responsibilities.

Clarifying the Concept of Roles

The term "role" is context-dependent and must be clearly scoped:

  • At the technical level, there is only one fundamental role: participant.

    A participant acts as a data provider, a data consumer, or both within the Dataspace Protocol.

    Note: In this Rulebook, "participant" denotes the technical role representing a legal organisation that operates software agents on behalf of that organisation. When the document discusses business or legal roles (e.g., provider, consumer, DSGA functions), those usages are explicitly qualified and belong to higher layers (economic or regulatory). This includes roles such as data intermediary, marketplace operator, auditor, or service provider, but also explicitly the data provider and data consumer role in the context of the business transcation.

    These business roles do not exist at the technical layer but are mapped onto the core participant role based on the actions performed and services offered.

Maintaining this distinction ensures that governance models remain technically sound while accommodating diverse business scenarios.

Clarifying Policies and Contracts Across Layers

The terms "policy" and "contract" are also layer-dependent and should be interpreted explicitly in context:

  • At the technical layer, policies and contracts are represented as machine-readable constraints and negotiated agreement artefacts used by software agents.
  • At the economic and legislative layers, policies and contracts express legal and business intent, obligations, liabilities, and governance commitments between organisations.

The Rulebook therefore distinguishes between technical representations and legal/business meaning to avoid ambiguity and to support interoperability across implementations.

Distinguishing Data Spaces from Trusted Data Transactions

A clear differentiation must be made between Data Spaces and Trusted Data Transactions (TDTs):

  • Data Spaces are decentralized environments that enable participants to share data while ensuring their autonomy and agency. See the chapter What is a Data Space for details.

  • Trusted Data Transactions, as under current standardisation in the European Commission's Standardisation Request on a Trusted Data Framework in CEN/CENELEC JTC 25, can also be associated with the EU Data Governance Act. They can also be related to data intermediaries and service orchestration. Such models prioritise regulatory alignment and controlled environments.

While TDTs may operate within data spaces, they are conceptually distinct. Equating them risks narrowing the scope of data space implementations and excluding more decentralized or peer-to-peer configurations. Data spaces designed, built and operated according to the IDSA Rulebook enable the implementation of TDTs but don't mandate it. Also the implementation of a TDT is not dependent on the use of a data space. Both are independent concepts that can be used at the same time.

Participation and Representation

Participants in a data space are defined by their ability to automate the negotiation and execution of data sharing agreements via technical protocols. This has several implications:

  • Organisations, not individuals, are considered technical participants. These organisations are represented by software agents capable of executing standardised data space protocols.

Note: For technical participation, "organisation" includes incorporated entities, not-for-profit bodies, public sector organisations, and registered sole traders or self-employed individuals acting as legal entities. Individuals may participate only when acting as a legal entity and if they are able to operate all required software agents directly or via an organisation that represents them (for example, a service provider).

  • Natural persons shall interact with data spaces only indirectly through applications or services operated by organisations, and their participation shall be limited to the Economic and Legislative Layer. The services may include e.g. personal data intermediation (including consent management) or data wallet provision. Software agents may act on behalf of a natural person, but shall not impersonate or assume the identity of that person in the technical layer.

  • As data spaces are fully decentralized and participants are responsible for their own decentralized identity (DID), there are no identity providers in a data space. Participants provide proof of their identity to others through the use of claims (e.g. expressed through verifiable credentials) and not through a common identity provider. Access to resources is managed through authentication tokens issued directly by the participants sharing those resources.

External Actors

Entities that provide static resources (such as ontologies, schemas, or public credentials) may support the data space but are not considered participants unless they actively engage via governed interfaces implementing the standardised data space protocols. For example:

  • A web service that hosts a data sharing ontology is not a participant but serves as an external reference.

  • A dataspace trust framework provider usually acts as an external reference. However, it may act as a participant if it delivers services subject to data space governance policies provided through an implementation of standardised data space protocols.

  • Trust anchors, regulators and similar legal entities may influence data transactions but do not participate directly unless they act through technical interfaces governed by data space rules. Most commonly they provide external services which are referenced in the data space (e.g. common data lookup services, registries).

This model guarantees the adherance to the governance model and thus supports trust while preserving digital sovereignty of each participant and the integrity of technical interactions. Flexibility is created through processes in the economic layer which supports extensive customisation. The DSGA must not mandate central or federated services that restrict participant autonomy or agency without explicit justification; any such choice must be documented and accompanied by mitigation measures to preserve participant control.

Participation requires governance commitment and technical integration.

Implications for the Rulebook

The Rulebook reflects these principles clearly:

  • The only technical role is the participant, which may act as data provider, data consumer, or both.

  • Business roles are supplementary and must be defined within the economic or regulation layers.

  • Clarity: Visual representations and descriptions in the IDSA Rulebook must be clearly labeled to indicate whether they depict technical, business, or legal perspectives.

Such clarity supports interoperability, ensures accurate alignment with regulatory frameworks, and promotes broad adoption across sectors.

Conclusion

Effective data space governance depends on the precise use of terminology and clear separation of concerns across layers. Establishing the participant as the core technical role, while accommodating richer business and regulatory interactions above it, ensures a scalable and interoperable foundation. This layered perspective will guide the elaboration of rules, responsibilities, and interactions in subsequent chapters of the Rulebook.