A Commission Delegated Regulation published by the Council on 10 July 2026 sets mandatory QR code specifications and security features for the physical European Disability Card and European Parking Card for persons with disabilities, affecting all Member States issuing these cards under Directive (EU) 2024/2841. The regulation, adopted on 1 July 2026, aims to ensure cross-border interoperability and prevent fraud.

The regulation mandates QR codes on all physical cards, with specifications and content defined in Annexes I and II. For the Parking Card, Article 4 requires mandatory security features: printing on polycarbonate, a diffractive optically variable image device, and anti-scan patterns with hidden text or pattern. Article 5 lists optional but exhaustive security features, including an RFID chip, optically variable or colour-shifting ink, and laser-engraving of data fields. Interoperability rules under Article 6 and Annexes I-IV require that QR code data be sealed with a qualified electronic seal per Regulation (EU) 910/2014. Member States must notify the Commission of card issuers and verification information, and issuers must publish revocation lists with unique revocation identifiers only. Article 7 mandates compliance with the General Data Protection Regulation (Regulation (EU) 2016/679) for personal data processing.

The regulation supplements Directive (EU) 2024/2841, which established the European Disability Card and enhanced Parking Card framework. This delegated act addresses technical details left to the Commission under Articles 7(7) and 8(7) of the directive. No prior coverage of this file exists in the last 180 days.

Stakeholder impact The regulation imposes compliance costs on national authorities and card issuers, who must update card production processes to include mandatory security features and QR codes. For persons with disabilities, the enhanced security and interoperability should reduce fraud and facilitate cross-border recognition of their cards, improving access to services across the EU. Card producers and technology vendors may benefit from increased demand for polycarbonate printing and anti-fraud technologies, but face costs for implementing the qualified electronic seal and revocation systems. The regulation balances fraud prevention with data protection, requiring strict adherence to GDPR for any personal data processed through QR codes or optional RFID chips.

Institutional follow-up Member States must transpose the regulation into national law and notify the Commission of their card issuers and verification information. The Commission will oversee compliance and may update the technical specifications through further delegated acts if needed.

← Atlas › News › Family, Inclusion and Equal opportunities