Personal Data Intermediary: Enable controlled and ethical personal data sharing
The VisionsTrust data space solution offers native integration of a personal data intermediary — a true trust layer enabling secure, sovereign, and compliant personal data sharing. This key feature empowers your users to retain control over their data while opening the door to innovative use cases.
Open-source based solution, fully aligned with MyData architecture and standards developed within DSSC, Gaia-X, IDSA and Prometheus-X.

registered organisations
projects in progress
available data and services
What is a personal data intermediary?
A personal data intermediary is a trusted, technical and legal entity that facilitates the exchange of personal data between services or organisations. It provides both organisations and individuals with tools to manage GDPR rights and consent. This concept is defined and regulated by the European Commission under the Data Governance Act (DGA).
The objective? To establish a new model for personal data management based on transparency, traceability, rights management, and explicit consent.
The intermediary ensures that every data sharing action is based on informed and explicit user consent — within a secure, ethical and legally compliant framework. Unlike traditional models where users lose control, the intermediary puts individual sovereignty at the heart of the process.
VisionsTrust: The first personal data intermediary in Europe
VisionsTrust’s personal data intermediary transforms how personal data is handled — enabling innovation while protecting individual freedoms.
Consent management:
Collecte du consentement explicite pour chaque traitement de données via des pop-ups intégrés directement dans vos plateformes.
Contract management:
Manage data usage with digitally signed and traceable contracts, detailing rights, obligations, durations, allowed usages and responsibilities.
Data & Services Catalog:
Access a structured catalog of available data, services, and infrastructures. Each item includes a detailed description, source, usage terms, access conditions and potential pricing.


GDPR Rights Management:
Provide users with a simple tool to exercise their rights at any time. They can view, manage, or revoke consents in a few clicks, track usage history, see who accessed their data, and receive personalised recommendations.
Identity Management:
Use interoperable, secure ID systems where users and entities can be authenticated across services. Access is restricted based on roles and permissions, ensuring privacy by design.
Information Governance:
Structure, trace, and ensure transparency throughout the entire data lifecycle.
VisionsTrust Intermediation Protocol: Transparency, trust and interoperability
To guarantee personal data sharing that is secure, ethical and compliant, VisionsTrust relies on a robust intermediation protocol. This protocol structures every step around core principles: contractualisation, informed consent, traceability, and GDPR compliance.
Why use a personal data intermediary?
A consent-driven data exchange architecture
With VisionsTrust, each user has a personal data intermediary account, serving as their reference identity within the data space. This account consolidates identity information across the services and organisations they interact with.
Thanks to a secure correlation mechanism, services never access the user account directly. Instead, dynamic identifiers are generated to authorise and trigger exchanges — protecting identity, simplifying flows, and ensuring full compliance.
Looking for a trusted personal data intermediary?
Discover how VisionsTrust can help you securely simplify personal data and AI service exchanges. Contact our experts to learn more!
VisionsTrust: A recognised leader in Data Spaces
VisionsTrust leverages open digital commons governed and developed by Prometheus-X, ensuring a secure and interoperable infrastructure.
Adopted by Data Space for Skills, it stands as a leading solution for data spaces. Additionally, VisionsTrust actively contributes to international consortia and standards, reinforcing its commitment to open and interoperable data and AI governance.