EAA Compliance Agency: Who Enforces the European Accessibility Act and What Certification Means

What the European Accessibility Act Demands—and Who's Accountable

A mid-size e-commerce company operating across seven EU member states discovers, six months before the June 28, 2025 EAA enforcement deadline, that its checkout flow, PDF invoices, and mobile app all fail WCAG 2.1 Level AA conformance. Legal counsel flags that each member state has designated its own national enforcement body—meaning the company faces seven separate compliance frameworks, seven potential complaint channels, and seven sets of penalties. The remediation timeline compresses immediately.

The European Accessibility Act (EAA), formally Directive 2019/882/EU, establishes a harmonized accessibility baseline across EU member states for a defined set of products and services. Member states transposed it into national law by June 28, 2022, with a compliance deadline of June 28, 2025 for most obligations. The EAA mandates that covered services and products meet functional accessibility requirements aligned with international standards, including WCAG 2.1 Level AA for digital interfaces and PDF/UA-1 (ISO 14289-1:2014) for document accessibility.

Answer Block — What is an EAA compliance agency? An EAA compliance agency is the national authority designated by each EU member state under Article 21 of Directive 2019/882/EU to oversee enforcement of the European Accessibility Act. These agencies receive complaints from users with disabilities, investigate alleged non-conformance, and can require economic operators to remediate violations or impose sanctions. Unlike a single centralized EU regulator, enforcement is distributed: Germany's market surveillance authorities, France's ARCOM, Italy's AgID, and equivalent bodies in other states each operate independently within the EAA framework. Organizations serving multiple EU markets must monitor compliance requirements across all relevant national authorities. To manage cross-border risk, companies should document conformance through accessibility statements, conformance reports mapped to WCAG 2.1 Level AA, and remediated document libraries. Engaging a specialist like RemeDocs for PDF remediation ensures document-level conformance is defensible under national audits.

Who Needs to Comply with the EAA?

The EAA applies to economic operators—manufacturers, importers, distributors, and service providers—that place covered products on the EU market or provide covered services to EU consumers after June 28, 2025. Scope is defined by product and service category, not company size, though microenterprises providing services receive a qualified exemption.

Covered Products

• Consumer hardware with computing capability (computers, smartphones, tablets)
• Self-service terminals: ATMs, ticketing machines, check-in kiosks, payment terminals
• E-readers
• Television equipment with digital interactive services

Covered Services

• Electronic communications services (VoIP, messaging)
• Audiovisual media services and their websites and mobile applications
• Transport passenger services (air, bus, rail, waterborne) — websites, mobile apps, electronic tickets, real-time information, interactive self-service terminals
• Banking services — websites, mobile apps, electronic documents, payment terminals
• E-commerce services — websites and mobile applications used to sell products or services online
• E-books and dedicated software

Microenterprise Exemption

Service providers with fewer than 10 employees and annual turnover or balance sheet total not exceeding €2 million are exempt from EAA service requirements. This exemption does not apply to product manufacturers. Organizations near these thresholds should document their status formally, as national enforcement bodies may request evidence of eligibility.

Disproportionate Burden Exception

Even in-scope operators may invoke a disproportionate burden exception under Article 14, but only after conducting and documenting a formal assessment demonstrating that compliance costs are excessive relative to benefits to persons with disabilities. The assessment must be retained and made available to the relevant national authority on request. Invoking the exception without documented evidence is not a defensible position under most national transpositions.

For organizations operating European websites, mobile applications, or distributing PDFs to EU consumers, the practical implication is clear: WCAG 2.1 Level AA conformance for interfaces and PDF/UA-1 conformance for downloadable documents are the operational standards that enforcement bodies will reference during investigations.

Who Enforces the EAA?

Enforcement of the EAA is decentralized by design. Under Article 21 of Directive 2019/882/EU, each member state designates one or more national authorities responsible for market surveillance, enforcement, and complaint handling. There is no single EAA compliance agency at the EU level.

How National Enforcement Authorities Operate

National market surveillance authorities (MSAs) are empowered to:

• Accept and investigate complaints from users, disability organizations, and third parties
• Request technical documentation and conformance evidence from economic operators
• Conduct market surveillance checks on covered products and services
• Issue remediation orders with binding timelines
• Impose sanctions—penalties vary by member state but can include fines, market withdrawal orders, and publication of violations

Key National Enforcement Bodies (Selected)

• Germany: Market surveillance is distributed across Länder-level authorities coordinated under the Marktüberwachungsbehörden framework; the Federal Network Agency (Bundesnetzagentur) covers electronic communications
• France: ARCOM (Autorité de régulation de la communication audiovisuelle et numérique) handles audiovisual and digital services; DGCCRF covers broader consumer product market surveillance
• Italy: AgID (Agenzia per l'Italia Digitale) has existing web accessibility enforcement experience under national law and will carry competencies into EAA enforcement
• Spain: AEMAC (Agencia Española de Accesibilidad) was established specifically for EAA enforcement
• Ireland: The National Disability Authority (NDA) provides advisory functions; enforcement authority designation is finalized through national transposition legislation

EAA Compliance Agency Complaints: How the Process Works

A complaint to a national EAA enforcement body typically follows this sequence:

1. User or disability organization submits a written complaint identifying the specific barrier and the economic operator responsible
2. The national authority acknowledges receipt and assesses whether the complaint falls within its jurisdiction and the EAA's scope
3. The authority contacts the operator, requesting evidence of conformance: accessibility statement, conformance testing reports, remediation plans
4. If the operator cannot demonstrate conformance, the authority issues a formal finding and sets a remediation deadline
5. Failure to remediate within the deadline triggers escalation to sanctions under national implementing legislation

Organizations that receive an EAA compliance agency email notification or formal inquiry should treat it as a legal proceeding, not an informal request. Response timelines are typically 30 to 60 days depending on member state rules. Having pre-built conformance documentation—accessibility statements, VPAT-equivalent reports, and PDF remediation records—reduces response time and demonstrates good faith.

Cross-Border Enforcement Coordination

The EAA establishes a coordination mechanism among national MSAs under Article 24. When a product or service creates barriers across multiple member states, authorities can coordinate investigations. For multinational operators, a complaint filed in one jurisdiction can trigger coordinated scrutiny from authorities in others. This makes maintaining consistent, documented conformance across all markets a structural necessity, not a best practice.

What Is EAA Certification?

EAA certification is not a formal EU-issued credential or a pass/fail certificate granted by any regulatory body. The EAA does not establish a certification scheme in the way that, for example, ISO standards create third-party certification pathways. Instead, conformance with the EAA is demonstrated through a self-declaration process backed by technical evidence—a model closer to CE marking than to GDPR certification under Article 42.

What Conformance Demonstration Looks Like in Practice

Under Annex IV of Directive 2019/882/EU, economic operators that presume conformance with the EAA's accessibility requirements use harmonized European standards—primarily EN 301 549 V3.2.1 (March 2021), which incorporates WCAG 2.1 Level AA for web and mobile content. Demonstrating conformance involves:

• Accessibility Statement: A published declaration specifying which parts of a service or product conform, which do not, and the remediation plan for non-conformant elements. Required for websites and mobile apps under most national transpositions.
• Conformance Testing Documentation: Audit reports mapping tested components to EN 301 549 success criteria, including WCAG 2.1 Level AA checkpoints. Both automated tool outputs and manual expert testing with assistive technologies (screen readers, voice input) are expected.
• PDF and Document Accessibility Records: For organizations distributing electronic documents—invoices, reports, forms—conformance to PDF/UA-1 (ISO 14289-1:2014) is the operative standard. Remediated PDFs with verified tag trees, logical reading order, alternative text, and correct semantic structure constitute defensible evidence.
• Technical File / Due Diligence Record: For product manufacturers, a technical file under Article 16 documents design choices, testing methodologies, and conformance declarations.

Third-Party Accessibility Audits and Their Role

While no mandatory third-party certification exists under the EAA, engaging an accredited accessibility auditor or specialist remediation firm strengthens the evidentiary record considerably. National enforcement bodies reviewing complaints will weigh the credibility and completeness of conformance documentation. A report from a recognized specialist—versus a self-conducted internal review—carries greater weight in an enforcement investigation.

RemeDocs' PDF remediation process produces tagged, structured documents that map to PDF/UA-1 requirements: verified tag trees, reading order confirmation, artifact tagging for decorative elements, and metadata conformance. This level of documentation is precisely what an enforcement body would examine when assessing document accessibility claims.

European Accessibility Act Certification vs. Sector-Specific Requirements

Some regulated sectors layer additional conformance requirements on top of the EAA baseline. Banking services under PSD2, audiovisual media under the AVMSD, and public procurement under Directive 2014/24/EU each have intersecting accessibility or conformance requirements. Organizations in these sectors should map EAA conformance evidence to sector-specific frameworks to avoid duplicative audit processes.

The Practical Meaning of "EAA Certification"

EAA Accessibility Requirements: The Technical Baseline

The EAA's functional accessibility requirements are specified in Annex I of Directive 2019/882/EU. They are outcome-oriented—perceivable, operable, understandable, robust—mapped to the POUR framework foundational to WCAG 2.1. EN 301 549 V3.2.1 provides the testable technical criteria that operationalize these requirements.

Web and Mobile Interface Requirements

For websites and mobile applications under the EAA, the operative technical standard is WCAG 2.1 Level AA, as incorporated by EN 301 549 V3.2.1, Clauses 9 (web) and 11 (non-web software). Key conformance areas enforcement bodies and auditors examine:

• Perceivable: Text alternatives for non-text content; captions for time-based media; adaptable content that can be presented without losing information; sufficient color contrast (minimum 4.5:1 for normal text, 3:1 for large text)
• Operable: Full keyboard accessibility; no seizure-inducing content; navigable structure with meaningful page titles, headings, and focus indicators; sufficient time limits
• Understandable: Readable and predictable content; input assistance with error identification and correction
• Robust: Markup validity; name, role, value for UI components; status messages programmatically determinable

Document Accessibility Requirements

Electronic documents—particularly PDFs distributed as part of covered services (bank statements, e-tickets, invoices, e-books)—must meet PDF/UA-1 (ISO 14289-1:2014) requirements. The structural requirements include:

• Complete and accurate tag tree with correct element types (headings, paragraphs, lists, tables, figures)
• Logical reading order that matches the visual presentation order
• Alternative text on all meaningful images; artifact tagging on decorative elements
• Document metadata: title, language, and conformance claim in XMP metadata
• Accessible tables: header cells identified, no split or merged cells that disrupt reading order
• Form fields with labels, tooltips, and tab order conformance

Organizations distributing high volumes of PDFs—financial services firms, transport operators, e-commerce platforms with invoice generation—face the highest document remediation burden. Automated remediation tools alone do not achieve PDF/UA-1 conformance; expert review of tag trees and reading order is required for complex documents.

Self-Service Terminal Requirements

Physical self-service terminals (ATMs, kiosks, ticketing machines) must provide at least one accessible mode of operation meeting EN 301 549 V3.2.1 hardware and software clauses, including speech output, tactile controls or equivalent, and connection points for personal assistive technology.

EAA Compliance Checklist for Organizations

This checklist addresses the primary operational steps for achieving and maintaining defensible EAA conformance. It is not a substitute for a full legal review under applicable national transposition legislation.

Scoping and Legal Assessment

• Confirm which EAA product and service categories apply to your organization's offerings
• Identify all EU member states where covered products or services are available
• Determine applicable national transposition laws and the designated enforcement authority in each jurisdiction
• Assess microenterprise or disproportionate burden exception eligibility and document the basis formally

Technical Conformance

• Conduct a WCAG 2.1 Level AA audit of all covered websites and mobile applications using both automated tools and manual expert testing with assistive technologies
• Audit all PDF and electronic documents distributed as part of covered services against PDF/UA-1 (ISO 14289-1:2014)
• Remediate identified failures; prioritize barriers that prevent task completion (checkout flows, account access, document retrieval)
• Verify EN 301 549 V3.2.1 Clause 12 conformance for documentation and support services

Documentation Infrastructure

• Publish an accessibility statement for each covered website and mobile app per national requirements; include conformance status, known limitations, and contact mechanism
• Maintain conformance testing reports with version control; update after material changes to interfaces
• Retain PDF remediation records: original document, remediated document, and conformance notes per file
• Prepare a technical file or due diligence record for product manufacturers under Article 16

Complaint and Enforcement Readiness

• Designate an internal point of contact for EAA compliance agency emails and formal inquiries
• Establish a response protocol with legal counsel for complaint handling within national deadlines
• Implement a feedback mechanism on accessibility statements that routes to a monitored inbox
• Schedule annual re-audits; accessibility conformance is not a one-time event

EAA Compliance Agency: Frequently Asked Questions

Is there a single EAA compliance agency for all EU countries?

No. Each EU member state designates its own national enforcement authority under Article 21 of the EAA. Organizations operating across multiple member states are accountable to multiple national bodies simultaneously. There is no centralized EU-level EAA enforcement agency.

What happens when I receive an EAA compliance agency email?

Treat it as a formal legal inquiry. The email represents the initiation of an enforcement action or investigation. Engage legal counsel with EAA expertise immediately, compile conformance documentation (accessibility statement, audit reports, remediation records), and respond within the timeline specified—typically 30 to 60 days under most member state rules. Do not respond informally or promise remediation without a documented plan.

How do EAA compliance agency complaints work?

Any user, disability organization, or third party can file a complaint with the relevant national authority. The authority assesses jurisdiction and EAA scope, contacts the operator for conformance evidence, and issues findings if violations are substantiated. Sanctions vary by member state and can include financial penalties and mandatory market withdrawal. A pattern of unresolved complaints across jurisdictions can trigger coordinated enforcement under Article 24.

Does the EAA apply to websites?

Yes, for in-scope service categories. E-commerce websites, banking websites, transport service websites, audiovisual media service websites, and electronic communications services are all covered under the EAA's service provisions. Conformance to WCAG 2.1 Level AA, as operationalized through EN 301 549 V3.2.1, is the applicable technical standard.

What is the difference between the EAA and the Web Accessibility Directive?

The Web Accessibility Directive (Directive 2016/2102/EU) applies exclusively to public sector bodies and references WCAG 2.1 Level AA via EN 301 549. The EAA applies to the private sector (and some mixed entities) across a defined set of product and service categories. The two frameworks share the EN 301 549 technical baseline but differ in scope, enforcement mechanisms, and who is covered.

Does the EAA cover PDF documents?

Yes, where PDFs are distributed as part of a covered service. Bank statements, e-tickets, invoices, e-books, and electronic forms distributed by in-scope service providers must meet the EAA's functional accessibility requirements. PDF/UA-1 (ISO 14289-1:2014) is the operative technical standard for document conformance. Organizations with large PDF libraries face a significant remediation workload that typically requires specialist tooling and expert review.

What is the European Accessibility Act 2026 deadline?

The primary EAA compliance deadline is June 28, 2025 for most products and services. Certain transitional arrangements exist: service providers may continue using products that were lawfully used to provide services before June 28, 2025 until June 28, 2030. The phrase "European Accessibility Act 2026" sometimes refers to anticipated market surveillance intensification and case law development as national enforcement bodies operationalize their complaint-handling processes through 2025 and into 2026.

The Regulatory Trajectory: What EAA Enforcement Will Look Like Through 2026 and Beyond

The EAA represents the most significant expansion of accessibility obligations into the European private sector to date. As national enforcement bodies stand up complaint intake systems, publish guidance, and process initial investigations through 2025, several structural trends are predictable.

First, early complaint patterns will concentrate in high-volume consumer-facing sectors: e-commerce checkout flows, online banking, and transport ticketing—precisely because these are the services where accessibility barriers have the most immediate, measurable impact on users with disabilities. Organizations in these sectors should expect to be among the first to receive EAA compliance agency complaints.

Second, enforcement coordination under Article 24 will expand as national MSAs share case data and develop joint investigation protocols. A complaint resolved inadequately in one member state will become a template for coordinated action across others.

Third, procurement requirements will accelerate adoption. Large enterprises and public bodies procuring digital services will require EAA conformance documentation from vendors as a contract condition, making "European Accessibility Act certification"—in the practical sense of a documented conformance package—a commercial prerequisite, not just a regulatory obligation.

Fourth, PDF and document accessibility will become a discrete enforcement focus as digital document distribution grows and enforcement bodies develop technical expertise. Organizations that remediate documents proactively—with verified PDF/UA-1 conformance, maintained tag trees, and audit trails—will be positioned to respond to enforcement inquiries within required timelines. RemeDocs provides the document remediation infrastructure necessary to build and maintain that position at scale.

The organizations that treat EAA conformance as a documentation and systems problem—not just a design problem—will be the ones capable of responding to enforcement actions with evidence rather than remediation promises.