Data Space Rulebook

Effective date: Feb 10, 2026
Last update: Feb 10, 2026

1. Purpose of the Rulebook

This Rulebook establishes the participation rules for all organizations in the Sheetgo Data Space.

Its purpose is to ensure an environment that is:

• secure,
• trustworthy,
• transparent,
• and suitable for collaboration among participants from different sectors.

2. Scope of application

These rules govern:

• access to the Data Space,
• use of shared data,
• responsibilities of the participants,
• supervision mechanisms,
• and exit or suspension procedures.

3. Participant roles

A participant may act as:

• a data provider,
• a data consumer,
• or both provider and consumer simultaneously.

The role or roles are defined during onboarding and may be updated as participation evolves.

4. Sectoral domains and specific rules

The Data Space may enable sectoral domains or usage communities oriented to specific sectors or use cases.

Such domains:

• are governed by this Rulebook,
• may incorporate additional specific rules through sectoral annexes,
• and do not alter the condition of a single Data Space nor the application of general rules.

In case of conflict, the provisions of this Rulebook shall always prevail.

5. Principles for data use

5.1 Authorized use

Data may only be used for purposes expressly authorized by its owner.

5.2 Respect for conditions

Each dataset may be subject to specific access, use, or duration conditions that must be respected at all times.

5.3 Prohibition of misuse

It is prohibited to reuse data for unauthorized purposes or to share it with unauthorized third parties.

6. Ownership and responsibility

Each participant:

• retains ownership of the data it contributes,
• is responsible for its legality and quality,
• and is responsible for the use it makes of the data it accesses.

The Operator does not acquire ownership rights over the data nor assume responsibility for its content.

7. Access to the Data Space

Access to the Data Space requires:

• acceptance of this Rulebook,
• signature of the Adhesion Agreement,
• and completion of the onboarding process.

The Operator may establish reasonable controls to verify compliance with these conditions.

8. Security and good practices

Participants shall:

• protect their access credentials,
• apply appropriate security measures,
• notify relevant incidents that may affect the Data Space.

9. Regulatory compliance

Each participant is responsible for complying with applicable regulations, including data protection regulations and corresponding sectoral obligations.

10. Supervision and monitoring

The Operator, in accordance with the decisions of the Data Space Governance Body, may carry out reasonable checks and adopt proportionate measures to ensure compliance with this Rulebook.

11. Breaches and measures

In case of non-compliance, the Operator may:

• require correction of the situation,
• temporarily limit access,
• or suspend participation in cases of serious or repeated breaches.

12. Exit from the Data Space

Participants may request their exit in accordance with established procedures.

Exit implies termination of access to the Data Space, without prejudice to legal obligations that remain applicable.

13. Updates to the Rulebook

This Rulebook may be updated to adapt to regulatory, technical, or operational changes.

Relevant modifications will be communicated with reasonable prior notice.

14. Relationship with other documents

This Rulebook is complemented by:

• the Governance Framework, including provisions related to the Data Space Governance Body,
• and the Adhesion Agreement.